We should provide a restricted environment (sandbox) in which to run user-defined code securely. To get it done, we would use the java sandbox model.
The java sandbox model allows restricting access from user-defined code to the system resources or security-sensitive feature of java, for example, reflection.
The user-defined code contains:
- StreamReceiver for DataStreamer:
- filter and transformer for ScanQuery.
The user-defined code will get permissions from GridSecuerityProcessor (security plugin).