On 9/10/07, Assaf Arkin <[EMAIL PROTECTED]> wrote: > > To invoke/receive activity we add a principal attribute that can reference > a > principal. On recieve, assigning from inbound message to the principal, > and > on invoke assigning from principal to outbound message.
I would much prefer if we could assert the user/roles as a guard to the <receive> instead of having to use <if> later in the process and having to loop back to the <receive> in case the assertions aren't met. I would also suggest using the standardized NIST RBAC terminology (user, role, permission) because it's most widely used and more intuitive (and business friendly). "Credential" seems to be the most common term used for proof of identity and authority. alex
