Hi Everyone,
Sorry if this is a dumb question. What is a good way to do security in BaseX? I found a stub here:
http://docs.basex.org/wiki/Security:_Use_Cases
What I would like is to be able to restrict who can do what with a database. Here are a few things I'd like to be able to do:
1. Grant create, read, update, and delete permissions on each document in a database, and have a default mask for a database document.
2. Say whether a user can or cannot execute a function or visit a URL (and get something besides a 404).
3. Allow the creation of roles which can be assigned to users. (Having a particular role allows all users with that role to do particular things, like update docs, or visit particular URLs.)
4. No doubt there are more desiderata. E.g. one might conceivably want to be able to grant permissions at the node level within a document.
Any pointers?
Best,
Tim Finney