[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [cmis] ACL Considerations and Concerns
Great start. Some comments on your points:
1. Agreed, however, providing directory services (user/group discovery/expansion) should be kept to the bare minimum
3. I would suggest ignoring inheritance and make inheritance repository specific or leverage the policy infrastructure
6. There is already a model in CMIS for exposing allowable actions you have on an object. If repositories can expose those actions (rights), they should be able to map them in reverse.
Some other comments:
1. XACML would be nice to leverage. However, I can't find a good mapping of ACL to XACML. This one from IBM research http://domino.watson.ibm.com/library/cyberdig.nsf/1e4115aea78b6e7c85256b360066f0d4/3a2fb67c29bf0f21852574ac00404e82?OpenDocument&Highlight=0,karjoth. I would suggest we discuss with that TC, but if it is not simple and straightforward, leverage a different model
2. The proposal should be simple to understand, implement and use
3. The proposal should specify the minimum feature set
4. The DAV and JCR ACL model should be leveraged as input
-Al
Al Brown
ECM CTO Staff, Information Managament
Office 714 327 3453
Mobile 714 263 6441
Email albertcbrown@us.ibm.com
CONFIDENTIAL NOTICE: The contents of this message, including any attachments, are confidential and are intended solely for the use of the person or entity to whom the message was addressed. If you are not the intended recipient of this message, please be advised that any dissemination, distribution, or use of the contents of this message is strictly prohibited. If you received this message in error, please notify the sender. Please also permanently delete all copies of the original message and any attached documentation.
"Dennis E. Hamilton" ---11/24/2008 10:00:03 AM---I just wanted to put down some flags on where there may be hazards in consideration of ACLs.
From: | "Dennis E. Hamilton" <dennis.hamilton@acm.org> |
To: | "CMIS TC List" <cmis@lists.oasis-open.org> |
Date: | 11/24/2008 10:00 AM |
Subject: | [cmis] ACL Considerations and Concerns |
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]