Major Description
There are a few places where Magma tries to access resources (files, system properties etc..) without the proper checks for java security. These are, so far :
- access to the magma.env property, quite spread in the code
- access to i18n files
- access to settings files
- a few reflection security policies : (org.apache.magma.database.DatabaseIdentity.<init>(DatabaseIdentity.java:32) calls setAccessible, while could avoid it f.e.)