geode-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "ASF subversion and git services (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (GEODE-2817) Have the function author determine what permissions the function execution requires
Date Thu, 05 Oct 2017 23:46:00 GMT

    [ https://issues.apache.org/jira/browse/GEODE-2817?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16193929#comment-16193929
] 

ASF subversion and git services commented on GEODE-2817:
--------------------------------------------------------

Commit 5e8aaf423e603f69464f999fbce587b1894ec01c in geode's branch refs/heads/feature/GEODE-3679
from Karen Miller
[ https://gitbox.apache.org/repos/asf?p=geode.git;h=5e8aaf4 ]

GEODE-2817 Document user-defined function authorization levels (#855)

* GEODE-2817 Document user-defined function authorization levels

* GEODE-2817 Address review comments and update code example


> Have the function author determine what permissions the function execution requires
> -----------------------------------------------------------------------------------
>
>                 Key: GEODE-2817
>                 URL: https://issues.apache.org/jira/browse/GEODE-2817
>             Project: Geode
>          Issue Type: New Feature
>          Components: docs, security
>            Reporter: Jinmei Liao
>            Assignee: Karen Smoler Miller
>             Fix For: 1.3.0
>
>
> Currently to execute a function, you will need "data:write" permission, but it really
depends on what the function is doing. So we should either:
> 1) externalize the authorize* api so that function author can use it in the function.execute
code to check authorization.
> 2) add a function api to tell the framework what permission this function needs to execute,
so that the framework will check the permission before executing the function.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

Mime
View raw message