IRIS security integration #1296

rstaylor · 2024-01-03T14:07:39Z

rstaylor
Jan 3, 2024

What security features of IRIS does the terminal take advantage of?

Is there any way to limit the actions a user can perform at the terminal prompt?

The concern here is providing only limited access to a terminal prompt for running or testing client written code in a managed cloud environment.

Answered by isc-bsaviano

Jan 3, 2024

@rstaylor For the WebSocket terminal, the user needs to have %Development to use it (same as the rest of the Atelier API). Once you're in, basic ObjectScript-level security is all you have. For example, if you try to zn into a namespace you don't have the resource for, you'll get a <PROTECT>. No checks beyond that are performed.

View full answer

isc-bsaviano · 2024-01-03T14:11:18Z

isc-bsaviano
Jan 3, 2024
Maintainer

@rstaylor For the WebSocket terminal, the user needs to have %Development to use it (same as the rest of the Atelier API). Once you're in, basic ObjectScript-level security is all you have. For example, if you try to zn into a namespace you don't have the resource for, you'll get a <PROTECT>. No checks beyond that are performed.

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

IRIS security integration #1296

{{title}}

Replies: 1 comment

{{title}}

Select a reply

IRIS security integration #1296

rstaylor Jan 3, 2024

Replies: 1 comment

isc-bsaviano Jan 3, 2024 Maintainer

rstaylor
Jan 3, 2024

isc-bsaviano
Jan 3, 2024
Maintainer