cayenne-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Malcolm Edgar <>
Subject Re: ROP over LinkRest
Date Tue, 02 Sep 2014 05:59:34 GMT
Looks awesome guys, I think this will be very important in modern
architectures where we have rich HTML clients accessing thin service

Having you guys work through the issues of JSON data transformation, fine
grained access control and logging is fantastic.


On Mon, Sep 1, 2014 at 9:56 PM, Andrus Adamchik <>

> On Sep 1, 2014, at 10:05 AM, Aristedes Maniatis <> wrote:
> > On 1/09/2014 4:17pm, Andrus Adamchik wrote:
> >> More likely not to servlets, but to JAX-RS resources that work on top
> of servlets. Also while we can have a single endpoint (say
> LinkRestResource) that dynamically serves all entities, in this model it
> will be trivial to add per-entity endpoints , each with its own security
> characteristics, all tied to a single ServerRuntime.
> >
> > So the security model would be wrapped around URL paths rather than the
> types of entities returned by the queries?
> Yes. And beyond that. Once you've authorized to access a certain endpoint,
> LinkRest allows for additional data filters based on your roles.
> > That's quite nice since it means there are lots of options for security
> outside of Cayenne, even down to simple authentication inside Apache httpd
> which can be controlled against regex path expressions.
> Totally.
> Andrus

  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message