C# Class Rhino.SecurityController

This class describes the support needed to implement security.
This class describes the support needed to implement security.

Three main pieces of functionality are required to implement security for JavaScript. First, it must be possible to define classes with an associated security domain. (This security domain may be any object incorporating notion of access restrictions that has meaning to an embedding; for a client-side JavaScript embedding this would typically be java.security.ProtectionDomain or similar object depending on an origin URL and/or a digital certificate.) Next it must be possible to get a security domain object that allows a particular action only if all security domains associated with code on the current Java stack allows it. And finally, it must be possible to execute script code with associated security domain injected into Java stack.

These three pieces of functionality are encapsulated in the SecurityController class.

Show file Open project: hazzik/Rhino.Net Class Usage Examples

Public Methods

Method Description
CallWithDomain ( object securityDomain, Context cx, Callable callable, Scriptable scope, Scriptable thisObj, object args ) : object

Call Callable.Call(Context, Scriptable, Scriptable, object[]) of callable under restricted security domain where an action is allowed only if it is allowed according to the Java stack on the moment of the execWithDomain call and securityDomain. Any call to GetDynamicSecurityDomain(object) during execution of callable.call(cx, scope, thisObj, args) should return a domain incorporate restrictions imposed by securityDomain and Java stack on the moment of callWithDomain invocation.

The method should always be overridden, it is not declared abstract for compatibility reasons.
CreateClassLoader ( ClassLoader parentLoader, object securityDomain ) : GeneratedClassLoader

Get class loader-like object that can be used to define classes with the given security context.

Get class loader-like object that can be used to define classes with the given security context.

CreateLoader ( ClassLoader parent, object staticDomain ) : GeneratedClassLoader

Create GeneratedClassLoader with restrictions imposed by staticDomain and all current stack frames. The method uses the SecurityController instance associated with the current Context to construct proper dynamic domain and create corresponding class loader. If no SecurityController is associated with the current Context , the method calls Context.CreateClassLoader(Sharpen.ClassLoader) .
GetDynamicSecurityDomain ( object securityDomain ) : object

Get dynamic security domain that allows an action only if it is allowed by the current Java stack and securityDomain.

Get dynamic security domain that allows an action only if it is allowed by the current Java stack and securityDomain. If securityDomain is null, return domain representing permissions allowed by the current stack.

GetStaticSecurityDomainClass ( ) : Type
GetStaticSecurityDomainClassInternal ( ) : Type
HasGlobal ( ) : bool

Check if global SecurityController was already installed.
InitGlobal ( SecurityController controller ) : void

Initialize global controller that will be used for all security-related operations.

Initialize global controller that will be used for all security-related operations. The global controller takes precedence over already installed Context -specific controllers and cause any subsequent call to Context.SetSecurityController(SecurityController) to throw an exception.

The method can only be called once.

Private Methods

Method Description
ExecWithDomain ( Context cx, Scriptable scope, System.Script script, object securityDomain ) : object
Global ( ) : SecurityController

Method Details

CallWithDomain() public method

Call Callable.Call(Context, Scriptable, Scriptable, object[]) of callable under restricted security domain where an action is allowed only if it is allowed according to the Java stack on the moment of the execWithDomain call and securityDomain. Any call to GetDynamicSecurityDomain(object) during execution of callable.call(cx, scope, thisObj, args) should return a domain incorporate restrictions imposed by securityDomain and Java stack on the moment of callWithDomain invocation.

The method should always be overridden, it is not declared abstract for compatibility reasons.

public CallWithDomain ( object securityDomain, Context cx, Callable callable, Scriptable scope, Scriptable thisObj, object args ) : object
securityDomain object
cx Context
callable Callable
scope Scriptable
thisObj Scriptable
args object
return object

CreateClassLoader() public abstract method

Get class loader-like object that can be used to define classes with the given security context.
Get class loader-like object that can be used to define classes with the given security context.
public abstract CreateClassLoader ( ClassLoader parentLoader, object securityDomain ) : GeneratedClassLoader
parentLoader ClassLoader /// parent class loader to delegate search for classes /// not defined by the class loader itself ///
securityDomain object /// some object specifying the security /// context of the code that is defined by the returned class loader. ///
return GeneratedClassLoader

CreateLoader() public static method

Create GeneratedClassLoader with restrictions imposed by staticDomain and all current stack frames. The method uses the SecurityController instance associated with the current Context to construct proper dynamic domain and create corresponding class loader. If no SecurityController is associated with the current Context , the method calls Context.CreateClassLoader(Sharpen.ClassLoader) .
public static CreateLoader ( ClassLoader parent, object staticDomain ) : GeneratedClassLoader
parent ClassLoader /// parent class loader. If null, /// Context.GetApplicationClassLoader() /// will be used. ///
staticDomain object static security domain.
return GeneratedClassLoader

GetDynamicSecurityDomain() public abstract method

Get dynamic security domain that allows an action only if it is allowed by the current Java stack and securityDomain.
Get dynamic security domain that allows an action only if it is allowed by the current Java stack and securityDomain. If securityDomain is null, return domain representing permissions allowed by the current stack.
public abstract GetDynamicSecurityDomain ( object securityDomain ) : object
securityDomain object
return object

GetStaticSecurityDomainClass() public static method

public static GetStaticSecurityDomainClass ( ) : Type
return System.Type

GetStaticSecurityDomainClassInternal() public method

public GetStaticSecurityDomainClassInternal ( ) : Type
return System.Type

HasGlobal() public static method

Check if global SecurityController was already installed.
public static HasGlobal ( ) : bool
return bool

InitGlobal() public static method

Initialize global controller that will be used for all security-related operations.
Initialize global controller that will be used for all security-related operations. The global controller takes precedence over already installed Context -specific controllers and cause any subsequent call to Context.SetSecurityController(SecurityController) to throw an exception.

The method can only be called once.

public static InitGlobal ( SecurityController controller ) : void
controller SecurityController
return void