db-derby-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Kim Haase (Updated) (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (DERBY-5636) Improve the overview of Derby's security mechanisms
Date Fri, 23 Mar 2012 20:55:25 GMT

     [ https://issues.apache.org/jira/browse/DERBY-5636?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Kim Haase updated DERBY-5636:
-----------------------------

    Attachment: DERBY-5636.zip
                DERBY-5636.stat
                DERBY-5636.diff

Attaching DERBY-5636.diff, DERBY-5636.stat, and DERBY-5636.zip, with changes to just a couple
of files (so far):

M       src/devguide/cdevcsecuree.dita
M       src/devguide/cdevcsecure90988.dita

I added links and new information to "Derby and security". More suggestions are welcome.

I found some old crufty stuff in "Signed jar files" (cdevcsecure90988.dita) when verifying
the link to it -- mentions of "Java 2", for example. There is more cleanup to be done in this
area if we wanted to go down that road -- the section "Running Derby under a security manager"
has more elderly terminology and links.

I am also wondering if the topic "Notes on the Derby security features" needs any changes
at this point.
                
> Improve the overview of Derby's security mechanisms
> ---------------------------------------------------
>
>                 Key: DERBY-5636
>                 URL: https://issues.apache.org/jira/browse/DERBY-5636
>             Project: Derby
>          Issue Type: Improvement
>          Components: Documentation
>    Affects Versions: 10.9.0.0
>            Reporter: Rick Hillegas
>            Assignee: Kim Haase
>         Attachments: DERBY-5636.diff, DERBY-5636.stat, DERBY-5636.zip
>
>
> The documentation on Derby's security mechanisms is scattered across several manuals.
This makes it hard for developers to figure out which security mechanisms are relevant for
a given application. Here are 3 places where security documentation appears:
> 1) In the Developer's Guide section titled "Derby and security"
> 2) In the Admin Guide section titled "Derby Network Server advanced topics"
> 3) In the Reference Manual section titled "Derby properties" as well as the syntax sections
on GRANT, REVOKE, CREATE/DROP ROLE, and CREATE FUNCTION/PROCEDURE.
> It would be good to add a section which points the developer at all of this material.
It might be sufficient to rewrite the top level "Derby and security" page of the Developer's
Guide. The following white paper may help organize our thoughts about this: http://www.oracle.com/technetwork/java/javadb/securitywhitepaper10-159253.pdf

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

Mime
View raw message