You are viewing a plain text version of this content. The canonical link for it is here.

Posted to xindice-users@xml.apache.org by "Saini, Dharmender" <DS...@eclipsenetworks.com> on 2002/05/22 19:15:41 UTC

Xindice with open doors/windows

Hi,
I am working on an contant management system that uses Xindice DB
for storing XML documents. Now I am wondering how to protect these documents
from unauthorized users.
It appears any body can see them, modify them and delete them. Xindicadmin
does not specify any user management etc.
 
My questions are:
Is there any security implemented on Xindice. If not then what is the
significance of 
org.apache.xindice.core.security API. Does it mean you can enforce security
using 
this API but any body on command line can change things also.
 
What is the significance of line below in config/system.xml
<root-collection dbroot="./db/" name="db" security="false">
 
 
Your answers are greatly appreciated.
 
Dharmender Saini
Eclipse Networks.
dsaini@eclipsenetworks.com <ma...@eclipsenetworks.com> 
732 389 3295 X 561