mirror of
https://github.com/github/codeql.git
synced 2026-04-09 00:54:00 +02:00
36 lines
736 B
XML
36 lines
736 B
XML
<!DOCTYPE qhelp PUBLIC
|
|
"-//Semmle//qhelp//EN"
|
|
"qhelp.dtd">
|
|
<qhelp>
|
|
|
|
|
|
<overview>
|
|
<p>
|
|
The Enterprise JavaBeans 3.0 core specification, Section 21.1.2, states:
|
|
</p>
|
|
|
|
<blockquote>
|
|
<p>
|
|
The enterprise bean must not attempt to access or modify the security configuration objects
|
|
(Policy, Security, Provider, Signer, and Identity).
|
|
</p>
|
|
<p>
|
|
These functions are reserved for the EJB container. Allowing the enterprise bean to use these functions
|
|
could compromise security.
|
|
</p>
|
|
</blockquote>
|
|
|
|
</overview>
|
|
<references>
|
|
|
|
|
|
<li>
|
|
<a href="http://jcp.org/aboutJava/communityprocess/final/jsr220/index.html">
|
|
JSR-220 Enterprise JavaBeans 3.0 Final Release</a> (ejbcore),
|
|
Section 21.1.2 Programming Restrictions
|
|
</li>
|
|
|
|
|
|
</references>
|
|
</qhelp>
|