Return-Path: X-Original-To: apmail-incubator-deltaspike-dev-archive@minotaur.apache.org Delivered-To: apmail-incubator-deltaspike-dev-archive@minotaur.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 146A5DE5D for ; Fri, 29 Jun 2012 14:57:17 +0000 (UTC) Received: (qmail 44412 invoked by uid 500); 29 Jun 2012 14:57:17 -0000 Delivered-To: apmail-incubator-deltaspike-dev-archive@incubator.apache.org Received: (qmail 44372 invoked by uid 500); 29 Jun 2012 14:57:16 -0000 Mailing-List: contact deltaspike-dev-help@incubator.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: deltaspike-dev@incubator.apache.org Delivered-To: mailing list deltaspike-dev@incubator.apache.org Received: (qmail 44364 invoked by uid 99); 29 Jun 2012 14:57:16 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 29 Jun 2012 14:57:16 +0000 X-ASF-Spam-Status: No, hits=1.5 required=5.0 tests=HTML_MESSAGE,RCVD_IN_DNSWL_LOW,SPF_PASS,T_FILL_THIS_FORM_SHORT X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of lightguard.jp@gmail.com designates 209.85.213.41 as permitted sender) Received: from [209.85.213.41] (HELO mail-yw0-f41.google.com) (209.85.213.41) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 29 Jun 2012 14:57:10 +0000 Received: by yhr47 with SMTP id 47so3898896yhr.0 for ; Fri, 29 Jun 2012 07:56:49 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:from:date:message-id:subject:to:cc:content-type; bh=uOK9TQP3UvkEqxBDHRFPg1DaR8A8KLk6xeP/jQp26/8=; b=sEOObeiXR61fSoj8PMQzCZqT2l5HAehPNWEuLKoE0f0Pi+BBnYo6YYV7fAUpnMB3kC 9EM1ELWUlcOZEwaQFviBk4Um4ZC+RedUVnJ63V//S1JsgLvegz5zJe58lJKdQ6d0RlZH 8mZJKE1GceyQ6cKTBGdszGBg9ExTNCnTXGfRaEevP4jnbfevrhIO/iv3IInvDiWwqisN Rf/7d4LiKxM5JKc8xvavi2OuxM0VVKBbM/5sv8OvYohncLgtxKA01KGlw6aOkBKL4EKN MJKutmhGN6HzCYLICj5BREvfM529crE8N8CMJX+XWreKn0MrvMX8zy/lanC9SMOYXOX9 cNPQ== Received: by 10.50.94.133 with SMTP id dc5mr1751457igb.16.1340981808788; Fri, 29 Jun 2012 07:56:48 -0700 (PDT) MIME-Version: 1.0 Received: by 10.50.161.227 with HTTP; Fri, 29 Jun 2012 07:56:28 -0700 (PDT) From: Jason Porter Date: Fri, 29 Jun 2012 10:56:28 -0400 Message-ID: Subject: Early security IDM prototype feedback To: deltaspike-dev@incubator.apache.org Cc: Anil Saldhana Content-Type: multipart/alternative; boundary=e89a8f234ec15cf5b904c39da8fc --e89a8f234ec15cf5b904c39da8fc Content-Type: text/plain; charset=UTF-8 == Security IDM prototype feedback == * Fold PermissionQuery into PermissionManager to give the developers a similar model as JPA. * Because a Group is an IdentityType, I wonder if it would be better to just have one set of methods and pass in the IdentityType sub interface you would like to receive back * I feel the methods on UserQuery are restricting how the IDM can be used. We can't always guarantee that there will be a first name, last name, email, etc. However, being completely open and free form like what was done in the PicketLink IDM is too much. Perhaps we can find some sort of balance or meta model similar to JPA? * Maybe we could have a base no method interface for things and fold all the Query and Manager objects into one (similar to above about JPA) * We probably don't want to go down the route of create a query language, but we almost have a DSL with a fluent API here. Maybe we should think about about JPA the names out a bit more and actually create a fluent API for the Query objects * I believe we should remove some of the exception constructors and make a message required (this would probably be good to have in all of DeltaSpike). Adding a cause is great, but being able to create an exception without a message is less helpful for everyone. * Is there a point for having addObject and addObjects type methods? Would one that's simply a varag be enough? We could check the type that comes in if thy send us a collection, or simply have varags and collection addObjects methods. -- Jason Porter http://lightguard-jp.blogspot.com http://twitter.com/lightguardjp Software Engineer Open Source Advocate Author of Seam Catch - Next Generation Java Exception Handling PGP key id: 926CCFF5 PGP key available at: keyserver.net, pgp.mit.edu --e89a8f234ec15cf5b904c39da8fc--