THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
...
Status: Draft | Discussion | Development | Active | Dropped | Superseded
Superseded by: N/A
...
All out of the box authorizers will be implemented to prevent security problems but, due to the fact that we can't automatically detect in place modifications nor automatically define the trust boundary, the configurable ones will require extra care regarding the configuration or domain model design on the user side. The following table presents a brief summary of what "threats" (of the ones shown within the Introduction) are fully addressed by each implementation, and which ones might be exploitable depending on how the administrator configures the authorizer (the details will be described in each individual section when applicable, and clear documentation around this should be added to the user guide if we choose to implement these authorizers).
| Authorizer \ Threat | Reflection | Cache Access | Region Access | Entry Modification |
|---|---|---|---|---|
| RestrictedMethodAuthorizer |  | | | |
| UnrestrictedMethodAuthorizer | | | |  |
| RegExMethodAuthorizer | | | | |
| JavaBeanAccessorMethodAuthorizer | | | | |
Implementation Details
This section is just an overview and it contains some ideas of how the proposal could be achieved, no PoC has been done so far so the implementations details might change.
...