rspec/rules/S2652/java/rule.adoc

To ensure EJB portability, the EJB specification forbids the use of functionality in the ``++java.io++`` package. Instead of reading and writing files, EJB's should use some other means of data storage and retrieval, such as JDBC.


This rule raises an issue for the first ``++java.io++`` method call in each method.


== Noncompliant Code Example

----
public class MyBean implements BeanInterface {

  private File baseline = null;

  private void readBaseline () {
    try {
      baseline = new File(Constants.INTEREST_RATE_FILE);  // Noncompliant.
      if (baseline.exists()) {
        //...
      }
    } catch (IOException e) {  
      //...
    }
  }

  private void writeBaseline() {
    try {
      FileWriter fw = new FileWriter(baseline.getAbsoluteFile());  // Noncompliant
      BufferedWriter bw = new BufferedWriter(fw);
      bw.write(content); 

      bw.close(); 
    } catch (IOException e) {  
      //...
    }
  }    
}
----


== See

* http://cwe.mitre.org/data/definitions/576.html[MITRE, CWE-576] - EJB Bad Practices: Use of Java I/O
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			To ensure EJB portability, the EJB specification forbids the use of functionality in the ``++java.io++`` package. Instead of reading and writing files, EJB's should use some other means of data storage and retrieval, such as JDBC.


			This rule raises an issue for the first ``++java.io++`` method call in each method.

Fix the missing default metadata fields 2021-04-28 18:08:03 +02:00
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`== Noncompliant Code Example`

			`----`
			`public class MyBean implements BeanInterface {`

			`private File baseline = null;`

			`private void readBaseline () {`
			`try {`
			`baseline = new File(Constants.INTEREST_RATE_FILE); // Noncompliant.`
			`if (baseline.exists()) {`
			`//...`
			`}`
			`} catch (IOException e) {`
			`//...`
			`}`
			`}`

			`private void writeBaseline() {`
			`try {`
			`FileWriter fw = new FileWriter(baseline.getAbsoluteFile()); // Noncompliant`
			`BufferedWriter bw = new BufferedWriter(fw);`
			`bw.write(content);`

			`bw.close();`
			`} catch (IOException e) {`
			`//...`
			`}`
			`}`
			`}`
			`----`

Fix the missing default metadata fields 2021-04-28 18:08:03 +02:00
Restructure one-lang rspecs 2021-04-28 16:49:39 +02:00			`== See`

			`* http://cwe.mitre.org/data/definitions/576.html[MITRE, CWE-576] - EJB Bad Practices: Use of Java I/O`
Fix the missing default metadata fields 2021-04-28 18:08:03 +02:00