-
Notifications
You must be signed in to change notification settings - Fork 81
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
How to prevent javascript from accessing all methods of the class by the nashorn? #129
Comments
Thank you for your question! I don't think there is an easy way to give per-method access. Could you create a new class |
Thank you for your answer! |
I should be able to create it;But some method in parent class is exposed to javascript;Such as wait() method; |
I think some methods such as wait()、notify(),are exposed to javascript is not security.Thread safety issues may arise.Thank you for your attention. |
Ah good point! The sandbox does not provide any methods as far as I remember to prevent access to those! If you do find a way, please let me know & we may be able to add that into the sandbox! |
Well,I'll try my best.I'll let you know if I have a good idea.Thank you for you attention. |
Generally,javascript can access the class in the java application by the nashorn,but some public method should not be expose to javascript.How to prevent javascript from accessing all public methods of the class by the nashorn?
The text was updated successfully, but these errors were encountered: