couchdb-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Apache Wiki <wikidi...@apache.org>
Subject [Couchdb Wiki] Update of "PerDocumentAuthorization" by BramNeijt
Date Sat, 01 Jan 2011 19:40:01 GMT
Dear Wiki user,

You have subscribed to a wiki page or wiki category on "Couchdb Wiki" for change notification.

The "PerDocumentAuthorization" page has been changed by BramNeijt.
http://wiki.apache.org/couchdb/PerDocumentAuthorization?action=diff&rev1=6&rev2=7

--------------------------------------------------

   * As soon as you have encrypted data on the database end, queries become a problem.
   * There is often no real-world need to freely distribute encrypted data. Therefore this
approach is considered to P2P centric.
  
+ == Validate_doc_read function ==
+ Have a javascript function be called on every read, in the same manner as the validate_doc_update
system is applied. A [[http://mail-archives.apache.org/mod_mbox/couchdb-dev/201012.mbox/browser|patch
has been posted]].
+ 
+ Access protection this solution implements:
+  * Update: none, you need validate_doc_update for that
+  * Verify existence: complete if the right error codes are returned
+  * Read: only direct get requests
+ 
+ Limitations:
+  * Performance is probably degraded because you have to execute a Javascript function on
every read.
+  * Views are not protected in any way
+  * It may become a problem with replication.
+ 
+ 
+ 
+ 
  = See also =
   * http://wiki.apache.org/couchdb/Authentication_and_Authorization
   * http://wiki.apache.org/couchdb/Frequently_asked_questions#When_will_CouchDB_add_per-document_auth.3F

Mime
View raw message