[
https://issues.apache.org/jira/browse/CASSANDRA-9476?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Robert Stupp resolved CASSANDRA-9476.
-------------------------------------
Resolution: Duplicate
Resolving as duplicate of CASSANDRA-9892
> Less restrictive permissions for UDFs
> -------------------------------------
>
> Key: CASSANDRA-9476
> URL: https://issues.apache.org/jira/browse/CASSANDRA-9476
> Project: Cassandra
> Issue Type: Improvement
> Reporter: Robert Stupp
> Priority: Minor
>
> CASSANDRA-9402 introduces very restrictive permissions for UDFs. Being very
> restrictive with arbitrary executable code is generally the way to go.
> It might be necessary in some situations to raise the permissions or extend
> list or accessible classes on a per-function or global scope.
> Idea in CASSANDRA-9402 was to introduce a permission to allow functions
> without any restrictions - e.g. to introduce a CREATE UNTRUSTED permission.
> But such an "access everything everywhere" permission essentially allows
> access to the whole database and everything else.
> Another idea is to allow configuration of the allowed permissions and/or
> black/whitelisted classes.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
