You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cassandra.apache.org by "Aleksey Yeschenko (JIRA)" <ji...@apache.org> on 2012/11/02 02:20:13 UTC
[jira] [Commented] (CASSANDRA-4868) When authorizing actions, check
for NO_ACCESS permission first instead of FULL_ACCESS
[ https://issues.apache.org/jira/browse/CASSANDRA-4868?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13489187#comment-13489187 ]
Aleksey Yeschenko commented on CASSANDRA-4868:
----------------------------------------------
This is covered by CASSANDRA-4874 and CASSANDRA-4875 now, we should close the issue.
> When authorizing actions, check for NO_ACCESS permission first instead of FULL_ACCESS
> -------------------------------------------------------------------------------------
>
> Key: CASSANDRA-4868
> URL: https://issues.apache.org/jira/browse/CASSANDRA-4868
> Project: Cassandra
> Issue Type: Improvement
> Affects Versions: 1.1.6, 1.2.0 beta 1
> Reporter: Aleksey Yeschenko
> Assignee: Aleksey Yeschenko
> Priority: Minor
> Fix For: 1.1.7, 1.2.0
>
> Attachments: CASSANDRA-4868-1.1.txt, CASSANDRA-4868-1.2.txt
>
>
> When authorizing actions, check for NO_ACCESS permission first instead of FULL_ACCESS (ClientState.hasAccess). This seems like a safer order to me.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira