r6 - 05 Dec 2007 - 21:58:28 - HeikkiToivonenYou are here: OSAF >  Projects Web  >  DevelopmentHome > SecurityFramework > SecurityAccessControl

Access Control

The main principle is to give the least privileges to accomplish a task. If something is broken, the damage may be limited by what the process is allowed to do.

  • Users data should be protected so that only the user (and in some cases system administrator) can access the data
  • All preferences, including repository connection information, should be covered by access control (file system or other)

Repository Access Control

Low level access control has been implemented in the repository, but it is not being used by higher level code yet.

Access Control and Sharing

This is probably discussed on some sharing or Cosmo page. Links?

Edit | WYSIWYG | Attach | Printable | Raw View | Backlinks: Web, All Webs | History: r6 < r5 < r4 < r3 < r2 | More topic actions
 
Open Source Applications Foundation
Except where otherwise noted, this site and its content are licensed by OSAF under an Creative Commons License, Attribution Only 3.0.
See list of page contributors for attributions.