[security] Make sure the jmxservlet.token file is not world readable on Unix/Linux/macOS systems

adamretter · adamretter · commit 7473d6187839 · 2025-07-19T15:26:47.000+02:00
diff --git a/exist-core/src/main/java/org/exist/management/client/JMXServlet.java b/exist-core/src/main/java/org/exist/management/client/JMXServlet.java
@@ -56,6 +56,9 @@
 import java.nio.file.Files;
 import java.nio.file.Path;
 import java.nio.file.Paths;
+import java.nio.file.attribute.PosixFileAttributes;
+import java.nio.file.attribute.PosixFilePermission;
+import java.nio.file.attribute.PosixFilePermissions;
 import java.util.HashSet;
 import java.util.Properties;
 import java.util.Set;
@@ -338,6 +341,13 @@ private String getToken() {
         // Create and write when needed
         if (!Files.exists(tokenFile) || token == null) {
 
+            final Set<PosixFilePermission> permissions = PosixFilePermissions.fromString("rw-r-----");
+            try {
+                tokenFile = Files.createFile(tokenFile, PosixFilePermissions.asFileAttribute(permissions));
+            } catch (final Throwable t) {
+                LOG.warn("Unable to restrict permissions on: " + tokenFile);
+            }
+
             // Create random token
             token = UUIDGenerator.getUUIDversion4();
 
