31 lines
1.4 KiB
Diff
31 lines
1.4 KiB
Diff
Index: apache-tomcat-10.1.14-src/conf/catalina.policy
|
|
===================================================================
|
|
--- apache-tomcat-10.1.14-src.orig/conf/catalina.policy
|
|
+++ apache-tomcat-10.1.14-src/conf/catalina.policy
|
|
@@ -170,6 +170,9 @@ grant {
|
|
permission java.lang.RuntimePermission "accessClassInPackage.org.apache.tomcat";
|
|
|
|
// Precompiled JSPs need access to these packages.
|
|
+ permission java.lang.RuntimePermission "accessClassInPackage.org.apache.jasper";
|
|
+ permission java.lang.RuntimePermission "accessClassInPackage.org.apache.jasper.servlet";
|
|
+ permission java.lang.RuntimePermission "accessClassInPackage.org.apache.jasper.compiler";
|
|
permission java.lang.RuntimePermission "accessClassInPackage.org.apache.jasper.el";
|
|
permission java.lang.RuntimePermission "accessClassInPackage.org.apache.jasper.runtime";
|
|
permission java.lang.RuntimePermission
|
|
@@ -219,6 +222,15 @@ grant codeBase "file:${catalina.home}/we
|
|
};
|
|
|
|
|
|
+// Additional basic permissions for web applications.
|
|
+grant codeBase "file:/usr/share/java/tomcat-servlet-api.jar" {
|
|
+ permission java.security.AllPermission;
|
|
+};
|
|
+
|
|
+grant codeBase "file:/usr/share/java/tomcat-el-api.jar" {
|
|
+ permission java.security.AllPermission;
|
|
+};
|
|
+
|
|
// You can assign additional permissions to particular web applications by
|
|
// adding additional "grant" entries here, based on the code base for that
|
|
// application, /WEB-INF/classes/, or /WEB-INF/lib/ jar files.
|