Is the Appdomain the only way to sandbox IronPython?

I have somewhat different requirements from the original poster:

Specifically, we need different functionalities to be limited - file system access is okay, most of the standard python modules are also okay, but only a few explicit .NET dlls are to be allowed (we want to restrict the python scripts to the "official" API we provide). AFAICs, this requires to hook into the implementation of the python import statement.

Any way to accomplish this?

Thanks in advance!

Solution

Yes, AppDomains are the only way. If you limit access via the .NET sandboxing then anything you could do w/ the standard library would be appropriately limited as well. So why bother restricting any of the Python scripts? They can't do anything you haven't otherwise permitted.

Can I determine the current IP from a known MAC Address?
Okta signout don't work in Angular Applicaiton
Get-ProcessesByName in powershell to monitor individual python scripts running
How to import a globally installed package to virtualenv folder
Is there a way to expand a circle from its middle point to both left and right?
Can't use dotenv with ES6 modules
How to Exclude Specific Files (like .env) from GitHub Copilot in VS Code?
Is this truly best way to delete last element in C?
How to add OpenXR to existing Android OpenGLES native C++ project?
Download a package from npm as a tar (not installing it to a module)
How to return to an App after completing payment when using PayPal API?
How to change output format in Ada logging
when onedit used in apps scrips have a popup appear so users know its running
How to selectively enable or disable -Werror argument for entire (external project) directories in my project?
running Wildfly-17 standalone failed to run due to unreasonable configuration exception
NA values in a non-editable date column in a datatable in a shiny app change to "Invalid Date" when clicked on
68000 Assembly - Passing Parameters via Stack in a Sorting Routine
Assistance with importing MXTSESSIONS file into MobaXterm
Query to find all members of multi level many to many relationships and also the top most member of the hierarchy
What is a reasonable way of keeping track of multiple windows in PyQt?
NSHostingController menu not activated
Difference in output of sympy.binomial vs scipy.special.comb
Delete a list of files with find and grep
Cannot load a library called "database" in CodeIgniter
Store content offline until connection is established
500 Internal Server Error: Unintentional Code First Exception
PostMan showing 500 Internal Server Error Instead of 401 Unauthorized?
Post call for XML content using HttpClient
How do you use Basic Authentication with System.Net.Http.HttpClient?
Certbot Apache error "Name duplicates previous WSGI daemon definition."