contents   index   previous   next



Security

 

As a scripting language, ScriptEase provides the power to completely control a computer system. But there are times when this power can be dangerous. Many applications, such as those using distributed scripting, might need to run scripts that you do not want to have access to all of the power of ScriptEase. You do not want these scripts to delete files on your machine, read and transmit important data to a remote machine, execute arbitrary system programs, or any other such activities. ScriptEase security allows you to limit scripts so they cannot do these things.

 

ScriptEase security works by dividing functions on the system into secure functions, those which can perform no dangerous actions, and insecure functions, those which can perform dangerous activities. When you execute a script, you can attach a security manager to it. This manager will determine which insecure functions can be called.

 

If the script tries to call an insecure function which the manager does not allow, it will not call the function but will generate a security error. By using ScriptEase security, you can run scripts you trust and give them full access to dangerous functions, such as Clib.system() and Clib.remove(), while denying access to these same functions to other scripts you do not trust.

 


Writing a Security Manager

Specifying Security

Wrapper Functions And Security

Sample Script