db-derby-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Rick Hillegas <Richard.Hille...@Sun.COM>
Subject Re: [jira] Commented: (DERBY-2109) System privileges
Date Mon, 22 Jan 2007 13:39:05 GMT
Andrew McIntyre wrote:
> On 1/19/07, Rick Hillegas <Richard.Hillegas@sun.com> wrote:
>> Hi David,
>>
>> This is a possibility. It seems to me that "." is a bad choice for
>> customers whose usernames take the form "firstName.lastName". And "@" is
>> bad for customers whose usernames are email addresses. And "-", "_", " "
>> can all turn up in usernames too. And "~", "?", "=", ":", "/", "\" are
>> all awkward if the databasename is an url or a path. Would "!", "#",
>> "*", "+", "|", ";" be better?
>
> Permissions can have multiple string parameters, why not separate the
> username and database name into separate arguments, then you don't
> have to worry about escaping. e.g.:
>
> # this is a systemWideID
> grant principal org.apache.derby.authentication.DatabasePrincipal 
> "fred" ""
>
> # this is a databaseScopedID
> grant principal org.apache.derby.authentication.DatabasePrincipal
> "fred@comcast.net" "fredsDB"
>
> andrew
Hi Andrew,

It's true that Permissions can have multiple string arguments, but 
Principals don't seem to. I get syntax errors when my policy file gives 
a Principal two arguments.

Regards,
-Rick

Mime
View raw message