Return-Path: 
 <jspwiki-user-return-28-apmail-incubator-jspwiki-user-archive=incubator.apache.org@incubator.apache.org>
Delivered-To: apmail-incubator-jspwiki-user-archive@locus.apache.org
Received: (qmail 42797 invoked from network); 21 Nov 2007 20:47:18 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2)
  by minotaur.apache.org with SMTP; 21 Nov 2007 20:47:18 -0000
Received: (qmail 72356 invoked by uid 500); 21 Nov 2007 20:47:05 -0000
Delivered-To: apmail-incubator-jspwiki-user-archive@incubator.apache.org
Received: (qmail 72346 invoked by uid 500); 21 Nov 2007 20:47:05 -0000
Mailing-List: contact jspwiki-user-help@incubator.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:jspwiki-user-help@incubator.apache.org>
List-Unsubscribe: <mailto:jspwiki-user-unsubscribe@incubator.apache.org>
List-Post: <mailto:jspwiki-user@incubator.apache.org>
List-Id: <jspwiki-user.incubator.apache.org>
Reply-To: jspwiki-user@incubator.apache.org
Delivered-To: mailing list jspwiki-user@incubator.apache.org
Received: (qmail 72337 invoked by uid 99); 21 Nov 2007 20:47:05 -0000
Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 21 Nov 2007 12:47:05 -0800
X-ASF-Spam-Status: No, hits=-0.0 required=10.0
	tests=SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (athena.apache.org: domain of Janne.Jalkanen@ecyrd.com
 designates 193.64.5.122 as permitted sender)
Received: from [193.64.5.122] (HELO mail.ecyrd.com) (193.64.5.122)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 21 Nov 2007 20:46:54 +0000
Received: from [192.168.0.13] (cs181005170.pp.htv.fi [82.181.5.170])
	(using TLSv1 with cipher AES128-SHA (128/128 bits))
	(No client certificate requested)
	by mail.ecyrd.com (Postfix) with ESMTP id C154D4814A
	for <jspwiki-user@incubator.apache.org>;
 Wed, 21 Nov 2007 22:46:31 +0200 (EET)
Mime-Version: 1.0 (Apple Message framework v752.3)
In-Reply-To: <052C57E0-A374-40D2-8CAE-558B4BDF2715@mac.com>
References: <b28275cf0711210718x7ee7cf0dufd82c6e2aefa592b@mail.gmail.com>
 <20071121170203.GB3713@ecyrd.com>
 <052C57E0-A374-40D2-8CAE-558B4BDF2715@mac.com>
Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed
Message-Id: <D89F63D9-4970-40E1-8C24-A571E0101025@ecyrd.com>
Content-Transfer-Encoding: 7bit
From: Janne Jalkanen <Janne.Jalkanen@ecyrd.com>
Subject: Re: auth problems with Oracle AS
Date: Wed, 21 Nov 2007 22:46:25 +0200
To: jspwiki-user@incubator.apache.org
X-Mailer: Apple Mail (2.752.3)
X-Virus-Checked: Checked by ClamAV on apache.org

> (Digression for Janne and the dev team: any time we do things like  
> file access, we need to bracket the code with a doPrivileged()  
> block so that we don't have to grant file I/O privileges to the  
> container... this is one of the big complicating factors that is  
> preventing a full enumeration of privileges at the moment...)

This sounds insane to me.  It complicates everything, and what would  
we gain by doing it?

/Janne