Return-Path: 
 <commits-return-141861-apmail-cassandra-commits-archive=cassandra.apache.org@cassandra.apache.org>
X-Original-To: apmail-cassandra-commits-archive@www.apache.org
Delivered-To: apmail-cassandra-commits-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 70D5118346
	for <apmail-cassandra-commits-archive@www.apache.org>;
 Mon, 17 Aug 2015 16:53:46 +0000 (UTC)
Received: (qmail 60597 invoked by uid 500); 17 Aug 2015 16:53:46 -0000
Delivered-To: apmail-cassandra-commits-archive@cassandra.apache.org
Received: (qmail 60514 invoked by uid 500); 17 Aug 2015 16:53:46 -0000
Mailing-List: contact commits-help@cassandra.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:commits-help@cassandra.apache.org>
List-Unsubscribe: <mailto:commits-unsubscribe@cassandra.apache.org>
List-Post: <mailto:commits@cassandra.apache.org>
List-Id: <commits.cassandra.apache.org>
Reply-To: dev@cassandra.apache.org
Delivered-To: mailing list commits@cassandra.apache.org
Received: (qmail 60498 invoked by uid 99); 17 Aug 2015 16:53:46 -0000
Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 17 Aug 2015 16:53:46 +0000
Date: Mon, 17 Aug 2015 16:53:46 +0000 (UTC)
From: "Jonathan Ellis (JIRA)" <jira@apache.org>
To: commits@cassandra.apache.org
Message-ID: <JIRA.12848884.1437742982000.84903.1439830426183@Atlassian.JIRA>
In-Reply-To: <JIRA.12848884.1437742982000@Atlassian.JIRA>
References: <JIRA.12848884.1437742982000@Atlassian.JIRA>
 <JIRA.12848884.1437742982198@arcas>
Subject: [jira] [Commented] (CASSANDRA-9892) Add support for unsandboxed UDF
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394


    [ https://issues.apache.org/jira/browse/CASSANDRA-9892?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14699812#comment-14699812 ] 

Jonathan Ellis commented on CASSANDRA-9892:
-------------------------------------------

Let's push this to 3.2 rather than feature creeping 3.0.

> Add support for unsandboxed UDF
> -------------------------------
>
>                 Key: CASSANDRA-9892
>                 URL: https://issues.apache.org/jira/browse/CASSANDRA-9892
>             Project: Cassandra
>          Issue Type: New Feature
>            Reporter: Jonathan Ellis
>            Assignee: Robert Stupp
>            Priority: Minor
>             Fix For: 3.x
>
>
> From discussion on CASSANDRA-9402,
> The approach postgresql takes is to distinguish between "trusted" (sandboxed) and "untrusted" (anything goes) UDF languages. 
> Creating an untrusted language always requires superuser mode. Once that is done, creating functions in it requires nothing special.
> Personally I would be fine with this approach, but I think it would be more useful to have the extra permission on creating the function, and also wouldn't require adding explicit CREATE LANGUAGE.
> So I'd suggest just providing different CQL permissions for trusted and untrusted, i.e. if you have CREATE FUNCTION permission that allows you to create sandboxed UDF, but you can only create unsandboxed if you have CREATE UNTRUSTED.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)