Details
Description
IgniteKernal allows a user-defined code to get access to the internal features of Ignite. That behavior leads to security lack.
We must encapsulate IgniteKernal to restrict access to it from user-defined code.
Additionally, a proxied instance of Ignite allows users to use public API of Ignite. Otherwise, using public API inside the sandbox without proxying can be the reason for access control errors.
Attachments
Issue Links
- is related to
-
IGNITE-11410 Sandbox for user-defined code
- Resolved
- links to