| Subject | Re: [Firebird-Architect] External engines - metadata |
|---|---|
| Author | Adriano dos Santos Fernandes |
| Post date | 2007-10-20T18:03:43Z |
Vlad Khorsun wrote:
current UDFs, that one need to put binary files in an allowed directory.
We're now doing a extensible plugin architecture, and we don't know how
and what plugins can execute.
files stored in database.
about J2SE security configured in the database.
Adriano
>> It may be when SYSDBA grant language usage to a user.You not see because you're thinking in a limited environment like
>>
>
> I still not understand why we should have such privileges (for language usage).
>
current UDFs, that one need to put binary files in an allowed directory.
We're now doing a extensible plugin architecture, and we don't know how
and what plugins can execute.
>> If plugin tables are owned by SYSDBA, how it will work with tables inI don't thinkg things should be so simple. Not everyone may read .class
>> user context?
>>
>> Note that security plugin tables should not be accessible to users and
>> classes stored in blobs should only be accessible to who own it.
>>
>
> Plugin's tables must be acessible at least for read by all users.
files stored in database.
> Only exception is security plugin (hmm... i tought we talked here about externalI mean tables controlling security of the plugin, which we discussed
> engines not about generic plugins ?).
about J2SE security configured in the database.
Adriano