karaf-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Łukasz Dywicki <l...@code-house.org>
Subject Re: Database commands for Karaf
Date Sun, 15 Jan 2012 20:22:29 GMT

In reply to Claus Ibsen mail
> Well there is a problem, if anyone who can ssh into karaf, can execute
> any arbitrary SQL against any data sources deployed, and being able to
> hide using the credentials from the application level data source. If
> the user would always have to provide a username/password when
> executing the SQL using the Karaf commands, then that is better.

We can introduce a multiple roles and then operator can grant access to execute given command
group. OSGi PermissionAdmin is another place which can be involved in security checks. 

Best regards,
Łukasz Dywicki

  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message