Added JEP-290 to MP and SE Security sections (helidon-io#4609)

Author: m0mus

docs/includes/security/jep-290.adoc

@@ -21,11 +21,22 @@ ifndef::rootdir[:rootdir: {docdir}/../..]
 :keywords: helidon, security, serialization, java, JEP-290
 :metainf: META-INF/helidon/serial-config.properties
 
-= Deserialization setup
+= JEP-290
+
+== Contents
+
+- <<Overview, Overview>>
+- <<Deserialization setup, Deserialization setup>>
+- <<System property configuration, System property configuration>>
+- <<Programmatic configuration, Programmatic configuration>>
+
+== Overview
 
 link:https://openjdk.org/jeps/290[JEP-290] brought support for deserialization filters to Java programming language.
 Such filtering allows us to control which classes may be deserialized using Java serialization.
 
+== Deserialization setup
+
 Helidon default settings forbids any deserialization except for patterns defined in a `pattern`
 property of any `{metainf}` on classpath. The patterns are semicolon delimited strings, such as `io.myapp.&#42;&#42;;java.util.HashMap` (any subpackage of `io.myapp` and class `java.util.HashMap`).
 Helidon will *always* add a deny-all filter pattern to the end of the pattern string (to make sure we exclude any unspecified class - we only operate on whitelists)

docs/mp/security/jep-290.adoc

@@ -0,0 +1,28 @@
+///////////////////////////////////////////////////////////////////////////////
+
+    Copyright (c) 2020, 2022 Oracle and/or its affiliates.
+
+    Licensed under the Apache License, Version 2.0 (the "License");
+    you may not use this file except in compliance with the License.
+    You may obtain a copy of the License at
+
+        http://www.apache.org/licenses/LICENSE-2.0
+
+    Unless required by applicable law or agreed to in writing, software
+    distributed under the License is distributed on an "AS IS" BASIS,
+    WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+    See the License for the specific language governing permissions and
+    limitations under the License.
+
+///////////////////////////////////////////////////////////////////////////////
+
+= JEP-290
+
+:description: Helidon Security Java Serialization (JEP-290)
+:keywords: helidon, security, serialization, java, JEP-290
+:metainf: META-INF/helidon/serial-config.properties
+:rootdir: {docdir}/../..
+
+include::{rootdir}/includes/mp.adoc[]
+
+include::{rootdir}/includes/security/jep-290.adoc[lines=26..]

docs/se/security/jep-290.adoc

@@ -0,0 +1,28 @@
+///////////////////////////////////////////////////////////////////////////////
+
+    Copyright (c) 2020, 2022 Oracle and/or its affiliates.
+
+    Licensed under the Apache License, Version 2.0 (the "License");
+    you may not use this file except in compliance with the License.
+    You may obtain a copy of the License at
+
+        http://www.apache.org/licenses/LICENSE-2.0
+
+    Unless required by applicable law or agreed to in writing, software
+    distributed under the License is distributed on an "AS IS" BASIS,
+    WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+    See the License for the specific language governing permissions and
+    limitations under the License.
+
+///////////////////////////////////////////////////////////////////////////////
+
+= JEP-290
+
+:description: Helidon Security Java Serialization (JEP-290)
+:keywords: helidon, security, serialization, java, JEP-290
+:metainf: META-INF/helidon/serial-config.properties
+:rootdir: {docdir}/../..
+
+include::{rootdir}/includes/se.adoc[]
+
+include::{rootdir}/includes/security/jep-290.adoc[lines=26..]

docs/sitegen.yaml

@@ -212,6 +212,7 @@ backend:
                   - "containers-integration.adoc"
                   - "tools.adoc"
                   - "extensibility.adoc"
+                  - "jep-290.adoc"
               - type: "PAGE"
                 title: "Scheduling"
                 source: "scheduling.adoc"
@@ -424,6 +425,7 @@ backend:
                   - "security.adoc"
                   - "providers.adoc"
                   - "configuration-secrets.adoc"
+                  - "jep-290.adoc"
               - type: "PAGE"
                 title: "Scheduling"
                 source: "scheduling.adoc"