Uploaded image for project: 'PUBLIC - Liferay Portal Community Edition'
  1. PUBLIC - Liferay Portal Community Edition
  2. LPS-33047

PACL - As a developer I would like reasonable java operations such as classloading, reflection, native library access within libraries I include to not prevent me from developing plugins for the marketplace

    Details

      Description

      There are a great number of issues currently in developing plugins for the marketplace (which require PACL to be enabled).

      One only needs to browse http://www.liferay.com/community/forums/-/message_boards/category/10919228 to find multiple issues, mostly related to perfectly normal and acceptable java operations.

        Attachments

          Issue Links

          1.
          PACL - Rename PACLClassLoaderUtil to ClassLoaderUtil to begin uncluttering the portal of PACL naming LPS-33058 Technical Task Closed Justin Choi (Inactive)  
          2.
          PACL - java.security.Policy based PACL implementation (a.k.a. PACLv2) LPS-33286 Technical Task Closed Justin Choi (Inactive)  
          3.
          PACL - Centralize initialization of PACL into a private SecurityManagerUtil class LPS-33292 Technical Task Closed Justin Choi (Inactive)  
          4.
          PACL - Use new SecurityManagerUtil and initialize as early as possible LPS-33293 Technical Task Closed Justin Choi (Inactive)  
          5.
          PACL- Initialize the new java.security.Policy LPS-33298 Technical Task Closed Justin Choi (Inactive)  
          6.
          PACL - Convert to boolean implies API method to match j.s.Policy LPS-33324 Technical Task Closed Justin Choi (Inactive)  
          7.
          PACL - Implement a bean post processor which will process @DoPrivileged annotations LPS-33329 Technical Task Closed Justin Choi (Inactive)  
          8.
          PACL - It's nessecary to initialize the portal security manager impl from the beginning in all cases LPS-33330 Technical Task Closed Justin Choi (Inactive)  
          9.
          PACL - private interfaces to support proxies LPS-33331 Technical Task Closed Justin Choi (Inactive)  
          10.
          PACL - Apply interfaces everywhere a cast to the impl exists LPS-33334 Technical Task Closed Justin Choi (Inactive)  
          11.
          PACL - Private interface so that core code can unwrap privileged beans if needed LPS-33351 Technical Task Closed Justin Choi (Inactive)  
          12.
          PACL - Move PACL specific classes into the pacl package LPS-33358 Technical Task Closed Justin Choi (Inactive)  
          13.
          PACL - Algorithm for handling permission checks on accessibility changes in local code LPS-33367 Technical Task Closed Justin Choi (Inactive)  
          14.
          PACL - AWTPermission support (richfaces uses AWT for image processing) LPS-33368 Technical Task Closed Justin Choi (Inactive)  
          15.
          PACL - Document environment variable security property LPS-33585 Technical Task Closed Justin Choi (Inactive)  
          16.
          PACL - deprecate PACLBeanHandler LPS-33587 Technical Task Closed Brian Chan  
          17.
          PACL - deprecate CheckMemberAccessPermission LPS-33588 Technical Task Closed Brian Chan  
          18.
          PACL - deprecate BaseReflectChecker LPS-33589 Technical Task Closed Justin Choi (Inactive)  
          19.
          PACL - deprecate PACLTemplateWrapper LPS-33592 Technical Task Closed Justin Choi (Inactive)  
          20.
          PACL - deprecate PACLAdvice LPS-33594 Technical Task Closed Justin Choi (Inactive)  
          21.
          PACL - deprecate PACLClassUtil LPS-33596 Technical Task Closed Justin Choi (Inactive)  
          22.
          PACL - rename inner PACLPortalLifecycle class LPS-33608 Technical Task Closed Justin Choi (Inactive)  
          23.
          PACL - eliminate most occurences of PortalSecurityManagerThreadLocal LPS-33609 Technical Task Closed Justin Choi (Inactive)  
          24.
          PACL - centralize and localize HookHotDeployListener security checks LPS-33610 Technical Task Closed Justin Choi (Inactive)  
          25.
          PACL - remove uses of CheckerUtil.isAccessControllerDoPrivileged() LPS-33657 Technical Task Closed Justin Choi (Inactive)  
          26.
          PACL - add method to get the policy on PortalSecurityManager interface LPS-33658 Technical Task Closed Justin Choi (Inactive)  
          27.
          PACL - remove unused PACLPolicy.hasPortalService method LPS-33661 Technical Task Closed Justin Choi (Inactive)  
          28.
          PACL - add missing getter to LogFactoryUtil - needed for pacl security LPS-33663 Technical Task Closed Justin Choi (Inactive)  
          29.
          PACL - remove hard coded classnames from RuntimeChecker LPS-33665 Technical Task Closed Justin Choi (Inactive)  
          30.
          PACL - unwrap HttpImpl if it's wrapped by DoPrivilegedBean LPS-33679 Technical Task Closed Justin Choi (Inactive)  
          31.
          PACL - prevent a circularity error in CentralizedThreadLocal LPS-33685 Technical Task Closed Justin Choi (Inactive)  
          32.
          PACL - add missing permission checks to ExpandoBridgeFactoryUtil LPS-33689 Technical Task Closed Justin Choi (Inactive)  
          33.
          PACL - centralize getClassLoader permission check, make sure it doesn't break any native JVM checks LPS-33691 Technical Task Closed Justin Choi (Inactive)  
          34.
          PACL - remove unused interface from InfrastructureUtil LPS-33692 Technical Task Closed Justin Choi (Inactive)  
          35.
          PACL - add missing socket permission checks to HttpUtil LPS-33696 Technical Task Closed Justin Choi (Inactive)  
          36.
          PACL - add missing permission checks to FileUtil LPS-33697 Technical Task Closed Justin Choi (Inactive)  
          37.
          PACL - prevent FileAvailabilityUtil from causing an unnecessary FilePermission check LPS-33699 Technical Task Closed Justin Choi (Inactive)  
          38.
          PACL - centralize PortalMessageBusPermission checking LPS-33700 Technical Task Closed Justin Choi (Inactive)  
          39.
          PACL - centralize ThreadPoolExecutor checking LPS-33701 Technical Task Closed Justin Choi (Inactive)  
          40.
          PACL - centralize DynamicQuery check LPS-33702 Technical Task Closed Justin Choi (Inactive)  
          41.
          PACL - centralize the Service checks LPS-33703 Technical Task Closed Justin Choi (Inactive)  
          42.
          PACL - implement security checks for PortletBagPool LPS-33704 Technical Task Closed Justin Choi (Inactive)  
          43.
          PACL - implement cross-plugin security checks for BeanLocator LPS-33717 Technical Task Closed Justin Choi (Inactive)  
          44.
          PACL - centralize PortalHookPermission checking LPS-33722 Technical Task Closed Justin Choi (Inactive)  
          45.
          PACL - remove unused code from SecurityManagerUtil LPS-33724 Technical Task Closed Justin Choi (Inactive)  
          46.
          PACL - remove remaining uses of PortalSecurityManagerThreadLocal in favour of access controllers LPS-33725 Technical Task Closed Justin Choi (Inactive)  
          47.
          PACL - fast way to get the current PACLPolicy LPS-33726 Technical Task Closed Justin Choi (Inactive)  
          48.
          PACL - ensure accessibility checks still work on public members LPS-33729 Technical Task Closed Justin Choi (Inactive)  
          49.
          PACL - always execute macro library templates in context of the portal LPS-33730 Technical Task Closed Justin Choi (Inactive)  
          50.
          PACL - method of detecting privileged callers LPS-33748 Technical Task Closed Justin Choi (Inactive)  
          51.
          PACL - method to account for differences between JVM implementations LPS-33750 Technical Task Closed Brian Chan  
          52.
          PACL - method for deep Liferay bean class detection LPS-33751 Technical Task Closed Justin Choi (Inactive)  
          53.
          PACL - method to dynamically wrap objects with a privileged handler LPS-33769 Technical Task Closed Justin Choi (Inactive)  
          54.
          PACL - template API abstraction to separate of context creation from initialization of utilities LPS-33773 Technical Task Closed Justin Choi (Inactive)  
          55.
          PACL - template API abstraction to allow invoking a template in the correct security context using the access controller pattern LPS-33776 Technical Task Closed Justin Choi (Inactive)  
          56.
          PACL - force "compilation" of the template within the context of the portal LPS-33777 Technical Task Closed Justin Choi (Inactive)  
          57.
          PACL - register trusted protection domains as early as possible LPS-33779 Technical Task Closed Justin Choi (Inactive)  
          58.
          PACL - DLUtil - all context utils that delegate to the portal may fail permission check LPS-33781 Technical Task Closed Justin Choi (Inactive)  
          59.
          PACL - implement trusted caller support for SecurityChecker LPS-33782 Technical Task Closed Justin Choi (Inactive)  
          60.
          PACL - implement trusted caller support for RuntimeChecker LPS-33784 Technical Task Closed Justin Choi (Inactive)  
          61.
          PACL - implement trusted caller support for ReflectChecker LPS-33786 Technical Task Closed Justin Choi (Inactive)  
          62.
          PACL - implement trusted caller support for PortalServiceChecker LPS-33787 Technical Task Closed Justin Choi (Inactive)  
          63.
          PACL - implement trusted caller support for NetChecker LPS-33789 Technical Task Closed Justin Choi (Inactive)  
          64.
          PACL - improve the performance of DoPrivilegedHandler LPS-33815 Technical Task Closed Brian Chan  
          65.
          PACL - update the FileChecker with improved logic LPS-33820 Technical Task Closed Justin Choi (Inactive)  
          66.
          PACL - implement trusted caller support for PortalRuntimeChecker LPS-33823 Technical Task Closed Justin Choi (Inactive)  
          67.
          PACL - separate context classloader swaping from the PACL logic in DirectRequestDispatcherFactoryImpl LPS-33826 Technical Task Closed Justin Choi (Inactive)  
          68.
          PACL - fix a small regression with the JSP compiler LPS-33863 Technical Task Closed Justin Choi (Inactive)  
          69.
          PACL - fallback onto a locally instantiated, locally applicable java.security.Policy LPS-33864 Technical Task Closed Justin Choi (Inactive)  
          70.
          PACL - fix identification of current JVM version LPS-33866 Technical Task Closed Justin Choi (Inactive)  
          71.
          PACL - wrap objects with DoPrivileged proxy where appropriate LPS-33875 Technical Task Closed Justin Choi (Inactive)  
          72.
          PACL - inject pacl into BeanLocatorImpl LPS-33876 Technical Task Closed Justin Choi (Inactive)  
          73.
          PACL - add access controller to PACLRequestDispatcherWrapper LPS-33877 Technical Task Closed Justin Choi (Inactive)  
          74.
          PACL - inject pacl into DataSourceFactoryImpl LPS-33879 Technical Task Closed Justin Choi (Inactive)  
          75.
          PACL - inject pacl into HotDeployImpl LPS-33881 Technical Task Closed Justin Choi (Inactive)  
          76.
          PACL - inject pacl into DirectRequestDispatcherFactoryImpl LPS-33882 Technical Task Closed Justin Choi (Inactive)  
          77.
          PACL - inject pacl into TemplateContextHelper LPS-33883 Technical Task Closed Justin Choi (Inactive)  
          78.
          PACL - inject pacl into PortalFilePermission LPS-33884 Technical Task Closed Justin Choi (Inactive)  
          79.
          PACL - inject pacl into PortalHookPermission LPS-33885 Technical Task Closed Justin Choi (Inactive)  
          80.
          PACL - inject pacl into PortalMessageBusPermission LPS-33886 Technical Task Closed Justin Choi (Inactive)  
          81.
          PACL - the PortalMessageBusPermission only checks send LPS-33887 Technical Task Closed Justin Choi (Inactive)  
          82.
          PACL - inject pacl into PortalRuntimePermission LPS-33889 Technical Task Closed Justin Choi (Inactive)  
          83.
          PACL - inject pacl into PortalServicePermission LPS-33890 Technical Task Closed Justin Choi (Inactive)  
          84.
          PACL - inject pacl into PortalSocketPermission LPS-33891 Technical Task Closed Justin Choi (Inactive)  
          85.
          PACL - inject pacl into PortletApplicationContext LPS-33893 Technical Task Closed Justin Choi (Inactive)  
          86.
          PACL - inject pacl into ServiceBeanAopProxy LPS-33894 Technical Task Closed Justin Choi (Inactive)  
          87.
          PACL - pre-initialize classes LPS-33896 Technical Task Closed Justin Choi (Inactive)  
          88.
          PACL - util-taglib should not be changing context classLoader LPS-33898 Technical Task Closed Brian Chan  
          89.
          PACL - auto proxy finder and persistence when PACL is enabled LPS-33899 Technical Task Closed Justin Choi (Inactive)  
          90.
          PACL - allow service builder plugins to unregister their MBeans LPS-33900 Technical Task Closed Justin Choi (Inactive)  
          91.
          PACL - create a test suite for testing PACL LPS-33904 Technical Task Closed Justin Choi (Inactive)  
          92.
          PACL - SQL tests LPS-33906 Technical Task Closed Justin Choi (Inactive)  
          93.
          PACL - when calling the portal's BeanLocator the servletContextName is null LPS-33932 Technical Task Closed Justin Choi (Inactive)  
          94.
          PACL - when we create PACLInitialContextFactoryBuilder we block the JVM from performing scheme based JNDI lookups LPS-33938 Technical Task Closed Justin Choi (Inactive)  
          95.
          PACL - remaining tests LPS-33953 Technical Task Closed Justin Choi (Inactive)  
          96.
          PACL - getPackage on a java proxy returns null LPS-33954 Technical Task Closed Justin Choi (Inactive)  
          97.
          PACL - make sure BeanLocator beans are properly wrapped (avoid wrapping in VelocityBeanHandler when not a velocity bean) LPS-33960 Technical Task Closed Justin Choi (Inactive)  
          98.
          PACL - prevent deep cascading permission checks on getClassLoader LPS-33961 Technical Task Closed Justin Choi (Inactive)  
          99.
          PACL - fix test-pacl-portlet (not including SQL) LPS-33962 Technical Task Closed Justin Choi (Inactive)  
          100.
          PACL - fix BeanLocatorTest to account for the bean being wrapped rather than not returned (so that i behaves like it did originally) LPS-33964 Technical Task Closed Justin Choi (Inactive)  
          101.
          PACL - don't wrap the bean if it's the portal asking for it LPS-33965 Technical Task Closed Justin Choi (Inactive)  
          102.
          PACL - SQL security checks for indexes LPS-34240 Technical Task Closed Justin Choi (Inactive)  
          103.
          PACL - JDK 5 compliance LPS-34390 Technical Task Closed Raymond Auge  

            Activity

              People

              Assignee:
              justin.choi Justin Choi (Inactive)
              Reporter:
              raymond.auge Raymond Auge
              Recent user:
              Kiyoshi Lee
              Participants of an Issue:
              Votes:
              3 Vote for this issue
              Watchers:
              16 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:

                  Packages

                  Version Package
                  6.1.2 CE GA3
                  6.1.30 EE GA3
                  6.2.0 CE M5