Return-Path: Delivered-To: apmail-db-derby-dev-archive@www.apache.org Received: (qmail 9409 invoked from network); 14 Dec 2006 22:51:17 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 14 Dec 2006 22:51:17 -0000 Received: (qmail 34307 invoked by uid 500); 14 Dec 2006 22:51:24 -0000 Delivered-To: apmail-db-derby-dev-archive@db.apache.org Received: (qmail 34264 invoked by uid 500); 14 Dec 2006 22:51:24 -0000 Mailing-List: contact derby-dev-help@db.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: Delivered-To: mailing list derby-dev@db.apache.org Received: (qmail 34255 invoked by uid 99); 14 Dec 2006 22:51:24 -0000 Received: from herse.apache.org (HELO herse.apache.org) (140.211.11.133) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 14 Dec 2006 14:51:24 -0800 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests=UNPARSEABLE_RELAY X-Spam-Check-By: apache.org Received-SPF: pass (herse.apache.org: local policy) Received: from [192.18.42.249] (HELO nwk-ea-fw-1.sun.com) (192.18.42.249) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 14 Dec 2006 14:51:12 -0800 Received: from d1-sfbay-10.sun.com ([192.18.39.120]) by nwk-ea-fw-1.sun.com (8.13.6+Sun/8.12.9) with ESMTP id kBEMoqRv010299 for ; Thu, 14 Dec 2006 14:50:52 -0800 (PST) Received: from conversion-daemon.d1-sfbay-10.sun.com by d1-sfbay-10.sun.com (Sun Java System Messaging Server 6.2-6.01 (built Apr 3 2006)) id <0JAA00001CS5OC00@d1-sfbay-10.sun.com> (original mail from Richard.Hillegas@Sun.COM) for derby-dev@db.apache.org; Thu, 14 Dec 2006 14:50:52 -0800 (PST) Received: from [129.144.89.141] by d1-sfbay-10.sun.com (Sun Java System Messaging Server 6.2-6.01 (built Apr 3 2006)) with ESMTPSA id <0JAA00D0GCSRNIVL@d1-sfbay-10.sun.com> for derby-dev@db.apache.org; Thu, 14 Dec 2006 14:50:52 -0800 (PST) Date: Thu, 14 Dec 2006 14:50:12 -0800 From: Rick Hillegas Subject: Re: [jira] Commented: (DERBY-2109) System privileges In-reply-to: <4581ACA4.4010602@vancouvering.com> Sender: Richard.Hillegas@Sun.COM To: derby-dev@db.apache.org Message-id: <4581D524.9080803@sun.com> MIME-version: 1.0 Content-type: text/plain; format=flowed; charset=UTF-8 Content-transfer-encoding: 7BIT References: <17179838.1166054481720.JavaMail.jira@brutus> <4581ACA4.4010602@vancouvering.com> User-Agent: Thunderbird 1.5.0.5 (X11/20060828) X-Virus-Checked: Checked by ClamAV on apache.org David Van Couvering wrote: > > > Rick Hillegas (JIRA) wrote: >> >> 2) Unfamiliar api. Oracle, DB2, Postgres, and MySQL all handle system >> privileges in different ways. Picking one of these models would still >> result in an api that's unfamiliar to many people. That said, these >> databases do tend to use GRANT/REVOKE for system privileges, albeit >> each in its own peculiar fashion. I agree that GRANT/REVOKE is an >> easier model to learn than Java Security. I think however, that the >> complexity of Java Security is borne by the derby-dev developer, not >> by the customer. Creating a policy file is very easy and our user >> documentation gives simple examples which the naive user can just >> crib. With adequate user documentation, I think this approach would >> be straightforward for the customer. > > I must respectfully disagree that "creating a policy file is very > easy." I think it's a royal PITA - the syntax is complex, > nonintuitive and unforgiving. > > Can we provide a GRANT/REVOKE interface on top of an implementation > that uses JAAS? > Hi David, Can you describe what you have in mind in greater detail? In our earlier discussions, we wanted to avoid using GRANT/REVOKE to manage system privileges. This is because this solution seemed to imply creating a master database in which to store the system-wide privileges. Are you suggesting: 1) That we use GRANT/REVOKE to edit the policy file and provide some VTIs for inspecting it? 2) That we provide a master database and GRANT/REVOKE in addition to the JAAS solution? 3) Something else? Thanks, -Rick