Class AclAwareWhitelist
- java.lang.Object
-
- org.jenkinsci.plugins.scriptsecurity.sandbox.Whitelist
-
- org.jenkinsci.plugins.scriptsecurity.sandbox.whitelists.AclAwareWhitelist
-
- All Implemented Interfaces:
ExtensionPoint
- Direct Known Subclasses:
AnnotatedWhitelist
public class AclAwareWhitelist extends Whitelist
Delegating whitelist which allows certain calls to be made only when a non-ACL.SYSTEM2user is making them.First there is a list of unrestricted signatures; these can always be run.
Then there is a (probably much smaller) list of restricted signatures. These can be run only when the current user is a real user or even Jenkins.ANONYMOUS2, but not when
ACL.SYSTEM2. Restricted methods should be limited to those which actually perform a permissions check, typically usingACL.checkPermission(hudson.security.Permission). Allowing the system pseudo-user to run these would be dangerous, since we do not know “on whose behalf” a script is running, and this “user” is permitted to do anything.
-
-
Nested Class Summary
-
Nested classes/interfaces inherited from interface hudson.ExtensionPoint
ExtensionPoint.LegacyInstancesAreScopedToHudson
-
-
Constructor Summary
Constructors Constructor Description AclAwareWhitelist(Whitelist unrestricted, Whitelist restricted)Creates a delegating whitelist.
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description booleanpermitsConstructor(Constructor<?> constructor, Object[] args)booleanpermitsFieldGet(Field field, Object receiver)booleanpermitsFieldSet(Field field, Object receiver, Object value)booleanpermitsMethod(Method method, Object receiver, Object[] args)Checks whether a given virtual method may be invoked.booleanpermitsStaticFieldGet(Field field)booleanpermitsStaticFieldSet(Field field, Object value)booleanpermitsStaticMethod(Method method, Object[] args)
-
-
-
Constructor Detail
-
AclAwareWhitelist
public AclAwareWhitelist(Whitelist unrestricted, Whitelist restricted)
Creates a delegating whitelist.- Parameters:
unrestricted- a general whitelist; anything permitted by this one will be permitted in any contextrestricted- a whitelist of method/constructor calls (field accesses never consulted) for which ACL checks are expected
-
-
Method Detail
-
permitsMethod
public boolean permitsMethod(@NonNull Method method, @NonNull Object receiver, @NonNull Object[] args)Description copied from class:WhitelistChecks whether a given virtual method may be invoked.Note that
methodshould not be implementing or overriding a method in a supertype; in such a case the caller must pass that supertype method instead. In other words, call site selection is the responsibility of the caller (such asGroovySandbox), not the whitelist.- Specified by:
permitsMethodin classWhitelist- Parameters:
method- a method defined in the JVMreceiver-this, the receiver of the method callargs- zero or more arguments- Returns:
- true to allow the method to be called, false to reject it
-
permitsConstructor
public boolean permitsConstructor(@NonNull Constructor<?> constructor, @NonNull Object[] args)- Specified by:
permitsConstructorin classWhitelist
-
permitsStaticMethod
public boolean permitsStaticMethod(@NonNull Method method, @NonNull Object[] args)- Specified by:
permitsStaticMethodin classWhitelist
-
permitsFieldGet
public boolean permitsFieldGet(@NonNull Field field, @NonNull Object receiver)- Specified by:
permitsFieldGetin classWhitelist
-
permitsFieldSet
public boolean permitsFieldSet(@NonNull Field field, @NonNull Object receiver, Object value)- Specified by:
permitsFieldSetin classWhitelist
-
permitsStaticFieldGet
public boolean permitsStaticFieldGet(@NonNull Field field)- Specified by:
permitsStaticFieldGetin classWhitelist
-
permitsStaticFieldSet
public boolean permitsStaticFieldSet(@NonNull Field field, Object value)- Specified by:
permitsStaticFieldSetin classWhitelist
-
-