1) I want to run multiple jruby applications on 1 domain.
2) I want to use glassfish v3's directory/jruby container based deployment
instead of creating a .war file.
3) I don't want the applications to be able to read/write each other's
sourcecode in case 1 application gets hacked.
4) I also want to be able to deploy new applications (with their own policy)
without having to restart the domain (which will take down all apps for a few
Since server.policy changes require the domain to restart (breaking 4), I would
like to use domains/domain1/generated/policy/myapp/granted.policy
It appear this file is not generated/available for applications deployed using
the jruby container.
This forces me to either deploy the old way, or leave my apps insecure, or have
domain-restarts affecting other apps.
I think it would be nice if the jruby container based deployment would behave
like other containers regarding security (policy generation).
Now I don't know if this defect should be fixed by the security team or by the
jruby container developers, so I just picked 1.
Thanks for any feedback/fixes/workarounds in the meantime.