JavaEE + JBoss：验证所有部署的war文件

rjee0c15 于 2022-11-08 发布在 Java

关注(0)|答案(1)|浏览(140)

我的客户有一个JavaEE兼容的服务器。我给他发送了一些war文件和相应的校验和用于部署。现在我想防止操作员在部署之前操纵war文件。
是否有可能在服务器启动时验证war文件沿着校验和？是否有可能获得当前部署的war文件的校验和？在JBoss EAP中是否已经有这样的功能？

jboss

来源：https://stackoverflow.com/questions/54018264/javaee-jboss-verify-all-deployed-war-files

1条答案

按热度按时间

uqxowvwt1#

受管部署（war/ear/jar）在部署时进行散列：此散列可通过jboss-cli访问：

/deployment=helloworld-mdb.war:read-resource(include-runtime) {
    "outcome" => "success",
    "result" => {
        "content" => [{"hash" => bytes {
            0xd1, 0xa1, 0x0a, 0xb1, 0x0a, 0xe5, 0xd9, 0xeb,
            0x9d, 0x86, 0xba, 0x66, 0x8e, 0x24, 0x14, 0xc0,
            0x13, 0x72, 0xd1, 0x1a
        }}],
        "disabled-time" => undefined,
        "disabled-timestamp" => undefined,
        "enabled" => true,
        "enabled-time" => 1546534691069L,
        "enabled-timestamp" => "2019-01-03 17:58:11,069 CET",
        "managed" => true,
        "name" => "helloworld-mdb.war",
        "owner" => undefined,
        "persistent" => true,
        "runtime-name" => "helloworld-mdb.war",
        "status" => "OK",
        "subdeployment" => undefined,
        "subsystem" => {
            "messaging-activemq" => undefined,
            "undertow" => undefined,
            "ejb3" => undefined,
            "logging" => undefined
        }
    } }

您可以看到以字节为单位的“hash”

赞(0）回复(0）举报 2022-11-08

我来回答

JavaEE + JBoss：验证所有部署的war文件

1条答案

相关问题

热门标签

最新问答