...
Status: PROTOTYPE
Created: 4. April 2013
Author: fmeschbe
Issue: – SLING-2944
| Table of Contents | ||
|---|---|---|
|
...
The goal of this proposal is to come up with new API to replace the loginAdministrative methods.
One example of a service, which currently uses administrative privileges but which would benefit from a carefully crafted service user is the Tenant Manager
Requirements
- Don't use administrative JCR Sessions or ResourceResolvers all over
- Allow services access to JCR Sessions and ResourceResolvers without requiring to hard-code or configure passwords
- Allow services to use "service users" which have been specially configured for service level access (as is usually done on unixish systems)
- Allow administrators to configure the assignment of service users to services
...