Event Handler Security Configuration
By default, Host Integrator event handling is run without a security manager. Use these guidelines to have a more restrictive security policy:
- Define the Host Integrator \etc\scripts.policy file as a standard
Java policy file. There is a sample policy file, scripts.policy.sample, in the Host Integrator \etc folder. The sample file contains stanzas that implement the most restrictive policy possible. If this type of security is required, copy the file and rename it as scripts.policy. Use the comments in the file to relax areas of security that your event handlers may require. Other stanzas in the file should not be modified, as they grant Host Integrator code the permissions it needs to run.
- You must grant all rights to the Host Integrator codebase used to implement event handling. In addition, the policy must grant the right to read and write files. In practice, the policy file should be as permissive as possible while still meeting security requirements in order to minimize the chances of an unexpected failure.
You can also create other Java properties
files for event handler settings. These settings are shared by all models
in an installation.