Thanks to Danny Sokolsky and Jason Hunter for their helpful suggestions. When I try to run the example xqmvc app as nobody I get a SEC-PRIV error:
Need privilege: http://marklogic.com/xdmp/privileges/xdmp-eval Does this mean I have to give my "public" user the ability to do xdmp:eval? I would prefer not to do this as I am paranoid about injection attacks. To be more specific, has anyone come up with a rendition of xqmvc that allows public access to database docs but does not require nobodies to be given the ability to do xdmp:eval (or invoke)? Tim Finney _______________________________________________ General mailing list [email protected] http://developer.marklogic.com/mailman/listinfo/general
