[Yanel-dev] [Fwd: [Bug 5116] Start with Access Control User Interface (Create/Edit/Delete Users and Set Access Policies)]

Michael Wechner michael.wechner at wyona.com
Thu Feb 8 09:50:51 CET 2007 

Paloma Gomez wrote:

>---------------------------- Original Message ----------------------------
>Subject: [Bug 5116] Start with Access Control User Interface
>(Create/Edit/Delete Users and Set Access Policies) From:   
>bugzilla-daemon at bugzilla.wyona.com
>Date:    Wed, February 7, 2007 7:56 pm
>To:      paloma.gomez at wyona.com
>--------------------------------------------------------------------------
>
>http://bugzilla.wyona.com/cgi-bin/bugzilla/show_bug.cgi?id=5116
>
>------- Additional Comments From josias.thoeny at wyona.org  2007-02-07 19:56
>------- I'm not sure if it's a good idea to make the UserResource
>modifiable. The Modifiable interface implies that the resource itself can
>be modified, i.e. that content can be written into the resource by using
>the getOutputStream() method. IMHO this does not really make sense for the
>UserResource.
>
>About the repositories, it might be cleaner if yanel would not directly
>access the ac repositories. I'm thinking about the possibility of writing
>e.g. an LDAP user implementation, which might not be based on a yarep
>repository at all. But I'm not sure how easy that could be accomplished
>with the current design anyway.
>
>WDYT?
>
>---------------------------------------------------
>
>I agree with you, that's why I wanted to create the User and Group
>interfaces and add them to the security package. However, as we didn't
>seem to reach an agreement in what a User should be and this item is a
>feature of the new release, I implemented the YanelResource this way,
>keeping in mind that it will have to be changed in the future to allow
>non-filesystem based user (or identity) implementations. If we finally
>decide something regarding the User/Identity implementation, I'll be happy
>to refactor the YanelUserResource.
>  
>

agreed. I am currently reviewing it, but I think some stuff nevertheless 
needs to be changed already.
Will send another email ;-)

For generalizing see also

http://yanel.wyona.org/specification/ldap.html
http://yanel.wyona.org/specification/openid.html

and I will also add the WES from adnovum and some more usecases (e.g. 
Kerberos).

Cheers

Michi

>
>Regards,
>
>Paloma
>
>
>
>
>
>
>
>_______________________________________________
>Yanel-development mailing list
>Yanel-development at wyona.com
>http://wyona.com/cgi-bin/mailman/listinfo/yanel-development
>
>  
>


-- 
Michael Wechner
Wyona      -   Open Source Content Management   -    Apache Lenya
http://www.wyona.com                      http://lenya.apache.org
michael.wechner at wyona.com                        michi at apache.org
+41 44 272 91 61

More information about the Yanel-development mailing list