Hi all! After reading available documentation about OrientDB security I'm very excited does not understand how to use it in web applications :( Essentially I want to do this: 1. On every request I'd like to get fresh connection from connection pool. 2. Then in request filter I want to authorize this connection against OrientDb thus associating OUser instance with it. 3. After that this connection is consumed in my service layer and since it is already associated with OUser my services automagically have access only to data which is allowed for this user 4. On top of that it would be ideal if I can use JPA API to access OrientDB.
Below are things which blocks me and I appreciate if anyone can help me with them: 1. OPartitionedDatabasePool which acts like connection pool accept username and password in constructor. I cannot change it later on to perform step 2. 2. In general I cannot get connection without specifying username and password and keeping user password in plain text around is not secure. 3. I cannot find API to pass user credentials to OJPAEntityManager. Does this means I cannot use OrientDB security if I use OrientDB JPA implementation. Thanks -- --- You received this message because you are subscribed to the Google Groups "OrientDB" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
