Versions Compared

Old Version 5

changes.mady.by.user Sundararajan Athijegannathan

Saved on

compared with

New Version 6

changes.mady.by.user Sundararajan Athijegannathan

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

java.security.AccessControlException: access denied ("java.io.FilePermission" "." "read")
java.security.AccessControlException: access denied ("java.io.FilePermission" "." "read")
Main.class
Main.java
test.js
test.policy

 

As you can see from the above example, SecurityException was thrown when "eval" was called with a String or a FileReader. But, if you pass a URLReader, nashorn will associate that URL with the script and therefore security permissions are granted as per your security policy. This allows trusted scripts be granted with more permissions.

load builtin function

Nashorn supports 'load' builtin function. This can be called from a script to load another script from a URL or a File. When script is loaded with "load" call, Nashorn associates URL/File origin to the script and therefore permissions are granted as per the current security policy. This is another way to grant security permissions to specific scripts.