From teiid-commits at lists.jboss.org Thu Aug 26 15:18:30 2010 Content-Type: multipart/mixed; boundary="===============1762945984217958666==" MIME-Version: 1.0 From: teiid-commits at lists.jboss.org To: teiid-commits at lists.jboss.org Subject: [teiid-commits] teiid SVN: r2495 - branches/7.1.x/documentation/reference/src/main/docbook/en-US/content. Date: Thu, 26 Aug 2010 15:18:30 -0400 Message-ID: <201008261918.o7QJIUOH028851@svn01.web.mwc.hst.phx2.redhat.com> --===============1762945984217958666== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Author: shawkins Date: 2010-08-26 15:18:29 -0400 (Thu, 26 Aug 2010) New Revision: 2495 Modified: branches/7.1.x/documentation/reference/src/main/docbook/en-US/content/da= taroles.xml Log: TEIID-1220 changing data role checking to be enabled by default, but to onl= y check against vdbs with data roles Modified: branches/7.1.x/documentation/reference/src/main/docbook/en-US/con= tent/dataroles.xml =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D --- branches/7.1.x/documentation/reference/src/main/docbook/en-US/content/d= ataroles.xml 2010-08-26 18:24:46 UTC (rev 2494) +++ branches/7.1.x/documentation/reference/src/main/docbook/en-US/content/d= ataroles.xml 2010-08-26 19:18:29 UTC (rev 2495) @@ -6,14 +6,13 @@ Data Roles Data roles, also called entitlements, are sets of permissions th= at are defined = - per VDB that dictate data access (create, read, update, delete). The = use of data roles is controlled system wide with the property in = - <jboss-install>/server/<profile>/deploy/teiid/teiid-= jboss-beans.xml file - in bean configuration section of RuntimeEngineDeployer wi= th property useDataRoles. + per VDB that dictate data access (create, read, update, delete). The = use of data roles can be disabled system wide with the property in = + &jboss-beans; file in bean configuration section of RuntimeEngin= eDeployer with property useDataRoles. = - Once data roles are enabled, the access permissions defined in a= VDB will be enforced by the Teiid Server. = - + If data roles is enabled and data roles are defined in a VDB, th= en access permissions will be enforced by the Teiid Server. = - Teiid uses a deny by default permission system, so all = VDBs deployed to the server will need roles granting access with this featu= re enabled. + Unlike previous versions of Teiid data roles will only = be checked if present in a VDB. = + A VDB deployed without data roles is open for use by any authenticated= user. =
Permissions --===============1762945984217958666==--