[jira] [Updated] (IGNITE-11410) Sandbox for user-defined code
[ https://issues.apache.org/jira/browse/IGNITE-11410?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Aleksey Plekhanov updated IGNITE-11410: --- Labels: iep-38 important (was: iep-38) > Sandbox for user-defined code > - > > Key: IGNITE-11410 > URL: https://issues.apache.org/jira/browse/IGNITE-11410 > Project: Ignite > Issue Type: New Feature >Reporter: Anton Vinogradov >Assignee: Denis Garus >Priority: Critical > Labels: iep-38, important > Fix For: 2.9 > > Time Spent: 1h 50m > Remaining Estimate: 0h > > We should provide a restricted environment (sandbox) in which to run > user-defined code securely. To get it done, we would use the java sandbox > model. > The java sandbox model allows restricting access from user-defined code to > the system resources or security-sensitive feature of java, for example, > reflection. > The user-defined code contains: > - StreamReceiver for DataStreamer: > - EntryProcessor; > - ComputeJob; > - filter and transformer for ScanQuery. > The user-defined code will get permissions from GridSecuerityProcessor > (security plugin). -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Updated] (IGNITE-11410) Sandbox for user-defined code
[ https://issues.apache.org/jira/browse/IGNITE-11410?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Maxim Muzafarov updated IGNITE-11410: - Issue Type: New Feature (was: Task) > Sandbox for user-defined code > - > > Key: IGNITE-11410 > URL: https://issues.apache.org/jira/browse/IGNITE-11410 > Project: Ignite > Issue Type: New Feature >Reporter: Anton Vinogradov >Assignee: Denis Garus >Priority: Critical > Labels: iep-38 > Fix For: 2.8 > > Time Spent: 1h 40m > Remaining Estimate: 0h > > We should provide a restricted environment (sandbox) in which to run > user-defined code securely. To get it done, we would use the java sandbox > model. > The java sandbox model allows restricting access from user-defined code to > the system resources or security-sensitive feature of java, for example, > reflection. > The user-defined code contains: > - StreamReceiver for DataStreamer: > - EntryProcessor; > - ComputeJob; > - filter and transformer for ScanQuery. > The user-defined code will get permissions from GridSecuerityProcessor > (security plugin). -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Updated] (IGNITE-11410) Sandbox for user-defined code
[ https://issues.apache.org/jira/browse/IGNITE-11410?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Maxim Muzafarov updated IGNITE-11410: - Priority: Critical (was: Major) > Sandbox for user-defined code > - > > Key: IGNITE-11410 > URL: https://issues.apache.org/jira/browse/IGNITE-11410 > Project: Ignite > Issue Type: Task >Reporter: Anton Vinogradov >Assignee: Denis Garus >Priority: Critical > Labels: iep-38 > Fix For: 2.8 > > Time Spent: 1h 40m > Remaining Estimate: 0h > > We should provide a restricted environment (sandbox) in which to run > user-defined code securely. To get it done, we would use the java sandbox > model. > The java sandbox model allows restricting access from user-defined code to > the system resources or security-sensitive feature of java, for example, > reflection. > The user-defined code contains: > - StreamReceiver for DataStreamer: > - EntryProcessor; > - ComputeJob; > - filter and transformer for ScanQuery. > The user-defined code will get permissions from GridSecuerityProcessor > (security plugin). -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Updated] (IGNITE-11410) Sandbox for user-defined code
[ https://issues.apache.org/jira/browse/IGNITE-11410?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Maxim Muzafarov updated IGNITE-11410: - Fix Version/s: 2.8 > Sandbox for user-defined code > - > > Key: IGNITE-11410 > URL: https://issues.apache.org/jira/browse/IGNITE-11410 > Project: Ignite > Issue Type: Task >Reporter: Anton Vinogradov >Assignee: Denis Garus >Priority: Major > Labels: iep-38 > Fix For: 2.8 > > Time Spent: 1h 40m > Remaining Estimate: 0h > > We should provide a restricted environment (sandbox) in which to run > user-defined code securely. To get it done, we would use the java sandbox > model. > The java sandbox model allows restricting access from user-defined code to > the system resources or security-sensitive feature of java, for example, > reflection. > The user-defined code contains: > - StreamReceiver for DataStreamer: > - EntryProcessor; > - ComputeJob; > - filter and transformer for ScanQuery. > The user-defined code will get permissions from GridSecuerityProcessor > (security plugin). -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Updated] (IGNITE-11410) Sandbox for user-defined code
[ https://issues.apache.org/jira/browse/IGNITE-11410?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Denis Garus updated IGNITE-11410: - Labels: iep-38 (was: ) > Sandbox for user-defined code > - > > Key: IGNITE-11410 > URL: https://issues.apache.org/jira/browse/IGNITE-11410 > Project: Ignite > Issue Type: Task >Reporter: Anton Vinogradov >Assignee: Denis Garus >Priority: Major > Labels: iep-38 > Time Spent: 1h 40m > Remaining Estimate: 0h > > We should provide a restricted environment (sandbox) in which to run > user-defined code securely. To get it done, we would use the java sandbox > model. > The java sandbox model allows restricting access from user-defined code to > the system resources or security-sensitive feature of java, for example, > reflection. > The user-defined code contains: > - StreamReceiver for DataStreamer: > - EntryProcessor; > - ComputeJob; > - filter and transformer for ScanQuery. > The user-defined code will get permissions from GridSecuerityProcessor > (security plugin). -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Updated] (IGNITE-11410) Sandbox for user-defined code
[ https://issues.apache.org/jira/browse/IGNITE-11410?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Denis Garus updated IGNITE-11410: - Summary: Sandbox for user-defined code (was: Restricted environment in which to run user-defined code securely) > Sandbox for user-defined code > - > > Key: IGNITE-11410 > URL: https://issues.apache.org/jira/browse/IGNITE-11410 > Project: Ignite > Issue Type: Task >Reporter: Anton Vinogradov >Assignee: Denis Garus >Priority: Major > Time Spent: 0.5h > Remaining Estimate: 0h > > We should provide a restricted environment in which to run user-defined code > securely. To get it done, we would use the java sandbox model. > The java sandbox model allows restricting access from user-defined code to > the system resources or security-sensitive feature of java, for example, > reflection. > The user-defined code contains: > - StreamReceiver for DataStreamer: > - EntryProcessor; > - ComputeJob; > - filter and transformer for ScanQuery. > The user-defined code will get permissions from GridSecuerityProcessor > (security plugin). -- This message was sent by Atlassian JIRA (v7.6.14#76016)
[jira] [Updated] (IGNITE-11410) Sandbox for user-defined code
[ https://issues.apache.org/jira/browse/IGNITE-11410?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Denis Garus updated IGNITE-11410: - Description: We should provide a restricted environment (sandbox) in which to run user-defined code securely. To get it done, we would use the java sandbox model. The java sandbox model allows restricting access from user-defined code to the system resources or security-sensitive feature of java, for example, reflection. The user-defined code contains: - StreamReceiver for DataStreamer: - EntryProcessor; - ComputeJob; - filter and transformer for ScanQuery. The user-defined code will get permissions from GridSecuerityProcessor (security plugin). was: We should provide a restricted environment in which to run user-defined code securely. To get it done, we would use the java sandbox model. The java sandbox model allows restricting access from user-defined code to the system resources or security-sensitive feature of java, for example, reflection. The user-defined code contains: - StreamReceiver for DataStreamer: - EntryProcessor; - ComputeJob; - filter and transformer for ScanQuery. The user-defined code will get permissions from GridSecuerityProcessor (security plugin). > Sandbox for user-defined code > - > > Key: IGNITE-11410 > URL: https://issues.apache.org/jira/browse/IGNITE-11410 > Project: Ignite > Issue Type: Task >Reporter: Anton Vinogradov >Assignee: Denis Garus >Priority: Major > Time Spent: 0.5h > Remaining Estimate: 0h > > We should provide a restricted environment (sandbox) in which to run > user-defined code securely. To get it done, we would use the java sandbox > model. > The java sandbox model allows restricting access from user-defined code to > the system resources or security-sensitive feature of java, for example, > reflection. > The user-defined code contains: > - StreamReceiver for DataStreamer: > - EntryProcessor; > - ComputeJob; > - filter and transformer for ScanQuery. > The user-defined code will get permissions from GridSecuerityProcessor > (security plugin). -- This message was sent by Atlassian JIRA (v7.6.14#76016)