[teiid-issues] [JBoss JIRA] (TEIID-2761) Enable/disable transport per model/view/virtual procedure
Ramesh Reddy (JIRA)
issues at jboss.org
Tue Jan 21 12:34:28 EST 2014
[ https://issues.jboss.org/browse/TEIID-2761?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12937645#comment-12937645 ]
Ramesh Reddy commented on TEIID-2761:
-------------------------------------
Right now VDB and security-domain are not related. So, if we restrict VDB to single security-domain, that will restrict to the transport(s) that is configured with. [thinking out loud]
>Isn't more typical that each vdb will be in a single security domain?
Yes, especially if they want to use data roles. It seems silly to have two sets of users that authenticate differently for a given resource.
>Generally wasn't the purpose of allowing multiple security domains per transport so that different vdbs could >effectively be in different security domains?
This was not the original intention, but I agree that fits the model. I believe before we made a switch to JAAS, the requirement was to use different security domains so that user could be authenticated with different security stores. In the JBoss security-domain configuration, it gives that ability to configure multiple stores inside single security-domain so that is satisfied.
So in that case we could raise this above the data role level to VDB property if that makes sense.
> Enable/disable transport per model/view/virtual procedure
> ---------------------------------------------------------
>
> Key: TEIID-2761
> URL: https://issues.jboss.org/browse/TEIID-2761
> Project: Teiid
> Issue Type: Feature Request
> Components: Server
> Affects Versions: 8.5
> Reporter: Patrick Deenen
> Assignee: Steven Hawkins
> Fix For: 8.7
>
>
> It would be nice to be able to enable and disable access to models, tables, views or (virtual) procedures for a specific transport (JDBC, ODBC, OData, REST, Web services).
> One may want to have access to virtual procedures only by Odata for example.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the teiid-issues
mailing list