> I'm looking forward to seeing the new security interface write up. I
> like the sound of your ideas, Gonzalo.
Thanks! I believe this is where we are standing:
* We have to decide whether we will drop Turbine's own security system and
adopt something else. Alternatives that spring up are:
JAAS: http://java.sun.com/products/jaas/
RBAC: http://sourceforge.net/projects/rbac/
Any others?
* If we drop Turbine's own security system, should we provide thin wrappers
for whatever system we adopt (a la JBoss, as described in
http://www.jboss.org/online-manual/HTML/ch09s08.html)?
* If we keep Turbine's security system, how should we modify it? My proposal
fits here; how should we change it? What's missing? What should we do to
make sure (or, as sure as we can) that it satisfies the requirements for
all known Turbine-based projects (such as Jetspeed, Tambora, Scarab,
etc.).
* How do all these issues fit within Jakarta? Should such a security system
be part of commons (or whatever ya wanna call it)? A separate project?
Daniel, it would be great if you could hash these issues around during the
Collab meeting, which I believe is to be held today.
Best regards,
--
Gonzalo A. Diethelm
[EMAIL PROTECTED]
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
