Java – “safe” scripting Code Answer

Hello Developer, Hope you guys are doing great. Today at Tutorial Guruji Official website, we are sharing the answer of Java – “safe” scripting without wasting too much if your time.

The question is published on by Tutorial Guruji team.

Does anyone know of any scripting for the Java platform that can be forcefully restricted to a provided function set (preferably absolutely no functions unless provided)? I’ve experimented with several JSR223 compatible languages, but have been able to compromise security in all cases.

What my system currently does:

  1. Load the requested script from the filesystem.
  2. Create a context to run the script with
  3. Run the script in the new context

Even if a security manager is properly configured, what would stop malicious script content from accessing (or worse — mutating) fields from objects that it otherwise shouldn’t have access to? This could potentially cause a bit of damage if a mistake is made or if a script is intentionally tailored for malicious behavior.

Answer

I guess that I’ll get this up and try to break it. Perhaps it’ll stand up to the test.

http://riven8192.blogspot.com/2010/07/java-rhino-fine-grained-classshutter.html

We are here to answer your question about Java – “safe” scripting - If you find the proper solution, please don't forgot to share this with your team members.

Related Posts

Tutorial Guruji