You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@geode.apache.org by "Charlie Black (JIRA)" <ji...@apache.org> on 2019/08/01 21:34:00 UTC
[jira] [Updated] (GEODE-6994) Documentation for OQL Method
Invocation Security
[ https://issues.apache.org/jira/browse/GEODE-6994?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Charlie Black updated GEODE-6994:
---------------------------------
Labels: GeodeCommons (was: )
> Documentation for OQL Method Invocation Security
> ------------------------------------------------
>
> Key: GEODE-6994
> URL: https://issues.apache.org/jira/browse/GEODE-6994
> Project: Geode
> Issue Type: New Feature
> Components: docs
> Reporter: Juan José Ramos Cassella
> Priority: Major
> Labels: GeodeCommons
>
> Delete the [Method Invocations Section|https://github.com/apache/geode/blob/rel/v1.9.0/geode-docs/developing/query_select/the_where_clause.html.md.erb#L238-L262] and add a new page, on which detailed documentation should be added about the following:
> * The new _OQL Method Invocation Security feature_.
> * How to configure the new _OQL Method Invocation Security feature_.
> * Each Out of Box Implementation: pros, cons and *_security risks_* associated with each one (check the table within the [Introduction|https://cwiki.apache.org/confluence/display/GEODE/OQL+Method+Invocation+Security#OQLMethodInvocationSecurity-Summary] for details).
> * Interface {{MethodInvocationAuthorizer}} and how/when the user needs to provide its own. Requirement about the thread-safety and performance of the implementation.
> * Deprecation of the system property {{QueryService.allowUntrustedMethodInvocation}} and how it can be replaced by one of the Out of Box Implementations.
--
This message was sent by Atlassian JIRA
(v7.6.14#76016)