Re: Milestone 2: authentication and authorization

From: Branko Čibej <brane_at_xbc.nu>
Date: 2000-12-14 21:13:04 CET

Jim Blandy wrote:

> I don't think this works. If I have /main/foo.c referring to 3.14,
> and then I make a "branch" by copying /main to /jimb-branch, then
> /jimb-branch/foo.c still refers to 3.14. If ACL's are keyed by node
> revision number, I can't put a different ACL on /jimb-branch/foo.c
> than /main/foo.c, because they're identical. In fact, /jimb-branch
> and /main are the same node revision, too, until I make my first
> change to /jimb-branch.
>
> It's very important to realize that node revision numbers are *not*
> inode numbers.

Ouch. Of course.

O.K., that leaves two alternatives:

a) Treat an ACL change as a modification, and create a new revision at
that time. This probably won't work, though, because ACL changes would
become expensive.

b) Put the ACLs in the directory entries, beside the entry names. This
would bring us close to how an actual filesystem behaves.

I'd go for b). Opinions?

-- 
Brane ďż˝ibej
   home:  <brane_at_xbc.nu>             http://www.xbc.nu/brane/
    work:   <branko.cibej_at_hermes.si>   http://www.hermes-softlab.com/
     ACM:   <brane_at_acm.org>            http://www.acm.org/

Received on Sat Oct 21 14:36:17 2006

This message: [ Message body ]
Next message: Markus Scherer: "Re: shared library suffixes"
Previous message: Greg Stein: "Re: identifying FS nodes"
In reply to: Jim Blandy: "Re: Milestone 2: authentication and authorization"
Next in thread: Jim Blandy: "Re: Milestone 2: authentication and authorization"
Reply: Jim Blandy: "Re: Milestone 2: authentication and authorization"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]