I've been thinking more about how I'd like to use and/or limit the use of RIAP,
especially in the context of hosted applications where you are trying to
limit access to the resources used by each. Here's a couple of things I'd
like to be able to do:
1. I'd like to restrict attached resources/restlets to a specific virtual
host, much like an internal router on the component, so that I can
attach internal applications that are not exposed to the outside
world.
2. I'd like to scope access within those hosts to specific application
and all their descendant/used applications.
My use case is simply that when I startup and include a service like
an eXist XML database, I don't really want to attach it to the
component as every application would have access to the embedded
database. I'd associate that database, via RIAP, with the host or
some particular part of the host's overall application.
I believe I can currently do some this attaching a guard that only
allows access over RIAP from certain clients. Of course, that may
require knowing that the request will tell me who the user of the
RIAP is in such a way that I can say "this is my application". I'm
not sure I can always get that and so it may only get me part of
the way there.
--Alex Milowski
------------------------------------------------------
http://restlet.tigris.org/ds/viewMessage.do?dsForumId=4447&dsMessageId=2616443
