Skip to content

Commit ca75af7

Browse files
authored
Added JEP-290 to MP and SE Security sections (helidon-io#4609)
1 parent a59e059 commit ca75af7

4 files changed

Lines changed: 70 additions & 1 deletion

File tree

docs/includes/security/jep-290.adoc

Lines changed: 12 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -21,11 +21,22 @@ ifndef::rootdir[:rootdir: {docdir}/../..]
2121
:keywords: helidon, security, serialization, java, JEP-290
2222
:metainf: META-INF/helidon/serial-config.properties
2323
24-
= Deserialization setup
24+
= JEP-290
25+
26+
== Contents
27+
28+
- <<Overview, Overview>>
29+
- <<Deserialization setup, Deserialization setup>>
30+
- <<System property configuration, System property configuration>>
31+
- <<Programmatic configuration, Programmatic configuration>>
32+
33+
== Overview
2534
2635
link:https://openjdk.org/jeps/290[JEP-290] brought support for deserialization filters to Java programming language.
2736
Such filtering allows us to control which classes may be deserialized using Java serialization.
2837
38+
== Deserialization setup
39+
2940
Helidon default settings forbids any deserialization except for patterns defined in a `pattern`
3041
property of any `{metainf}` on classpath. The patterns are semicolon delimited strings, such as `io.myapp.&#42;&#42;;java.util.HashMap` (any subpackage of `io.myapp` and class `java.util.HashMap`).
3142
Helidon will *always* add a deny-all filter pattern to the end of the pattern string (to make sure we exclude any unspecified class - we only operate on whitelists)

docs/mp/security/jep-290.adoc

Lines changed: 28 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,28 @@
1+
///////////////////////////////////////////////////////////////////////////////
2+
3+
Copyright (c) 2020, 2022 Oracle and/or its affiliates.
4+
5+
Licensed under the Apache License, Version 2.0 (the "License");
6+
you may not use this file except in compliance with the License.
7+
You may obtain a copy of the License at
8+
9+
http://www.apache.org/licenses/LICENSE-2.0
10+
11+
Unless required by applicable law or agreed to in writing, software
12+
distributed under the License is distributed on an "AS IS" BASIS,
13+
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14+
See the License for the specific language governing permissions and
15+
limitations under the License.
16+
17+
///////////////////////////////////////////////////////////////////////////////
18+
19+
= JEP-290
20+
21+
:description: Helidon Security Java Serialization (JEP-290)
22+
:keywords: helidon, security, serialization, java, JEP-290
23+
:metainf: META-INF/helidon/serial-config.properties
24+
:rootdir: {docdir}/../..
25+
26+
include::{rootdir}/includes/mp.adoc[]
27+
28+
include::{rootdir}/includes/security/jep-290.adoc[lines=26..]

docs/se/security/jep-290.adoc

Lines changed: 28 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,28 @@
1+
///////////////////////////////////////////////////////////////////////////////
2+
3+
Copyright (c) 2020, 2022 Oracle and/or its affiliates.
4+
5+
Licensed under the Apache License, Version 2.0 (the "License");
6+
you may not use this file except in compliance with the License.
7+
You may obtain a copy of the License at
8+
9+
http://www.apache.org/licenses/LICENSE-2.0
10+
11+
Unless required by applicable law or agreed to in writing, software
12+
distributed under the License is distributed on an "AS IS" BASIS,
13+
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14+
See the License for the specific language governing permissions and
15+
limitations under the License.
16+
17+
///////////////////////////////////////////////////////////////////////////////
18+
19+
= JEP-290
20+
21+
:description: Helidon Security Java Serialization (JEP-290)
22+
:keywords: helidon, security, serialization, java, JEP-290
23+
:metainf: META-INF/helidon/serial-config.properties
24+
:rootdir: {docdir}/../..
25+
26+
include::{rootdir}/includes/se.adoc[]
27+
28+
include::{rootdir}/includes/security/jep-290.adoc[lines=26..]

docs/sitegen.yaml

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -212,6 +212,7 @@ backend:
212212
- "containers-integration.adoc"
213213
- "tools.adoc"
214214
- "extensibility.adoc"
215+
- "jep-290.adoc"
215216
- type: "PAGE"
216217
title: "Scheduling"
217218
source: "scheduling.adoc"
@@ -424,6 +425,7 @@ backend:
424425
- "security.adoc"
425426
- "providers.adoc"
426427
- "configuration-secrets.adoc"
428+
- "jep-290.adoc"
427429
- type: "PAGE"
428430
title: "Scheduling"
429431
source: "scheduling.adoc"

0 commit comments

Comments
 (0)