[higgins-dev] CUID re-use (was something else)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

[higgins-dev] CUID re-use (was something else)

From: "Jim Sermersheim" <jimse@xxxxxxxxxx>
Date: Tue, 15 Aug 2006 14:40:03 -0600
Delivered-to: higgins-dev@xxxxxxxxxxx
List-archive: <http://eclipse.org/pipermail/higgins-dev>
List-help: <mailto:higgins-dev-request@eclipse.org?subject=help>
List-subscribe: <https://dev.eclipse.org/mailman/listinfo/higgins-dev>, <mailto:higgins-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://dev.eclipse.org/mailman/listinfo/higgins-dev>, <mailto:higgins-dev-request@eclipse.org?subject=unsubscribe>

>>> Greg Byrd gbyrd@xxxxxxxx> 8/15/06 2:12 PM >>
<snip>
>Can a Context reuse the CUID of a DigitalSubject that has been removed?
>If so, then we can't assume that today's URI+CUID will refer to the same
>DigitalSubject as tomorrow's. But to say that a CUID can't be recycled
>seems too restrictive to me.

In practice, I feel fairly strongly to the contrary. Where a CUID is used to grant permissions to a resource, the recycling of a CUID is a bad thing. For example: a superuser account is created and issued a cuid. This cuid is listed as a subject being granted permissions (maybe directly on a resource, maybe in a role object, but somewhere other than on the superuser's object itself). The superuser object is removed and its cuid re-used when an ordinary-joe object is created, and now ordinary-joe has unexpected permissions.

Whether that means we should go about prescribing the non re-usability of CUIDs, I don't know -- we should at least strongly suggest against it.

Jim

Follow-Ups:
- Re: [higgins-dev] CUID re-use (was something else)
  - From: Greg Byrd

References:
- [higgins-dev] [IdAS] Context open/close semantics
  - From: Greg Byrd
- Re: [higgins-dev] [IdAS] Context open/close semantics
  - From: Jim Sermersheim
- Re: [higgins-dev] [IdAS] Context open/close semantics
  - From: Greg Byrd
- Re: [higgins-dev] [IdAS] Context open/close semantics
  - From: Jim Sermersheim
- Re: [higgins-dev] [IdAS] Context open/close semantics
  - From: Greg Byrd
- [higgins-dev] whoami (was [IdAS] Context open/close semantics)
  - From: Jim Sermersheim
- Re: [higgins-dev] whoami (was [IdAS] Context open/close semantics)
  - From: Greg Byrd
- Re: [higgins-dev] whoami (was [IdAS] Context open/close semantics)
  - From: Jim Sermersheim
- [higgins-dev] What is a relationship? (was whoami (was [IdAS] Context open/close semantics))
  - From: Tom Doman
- Re: [higgins-dev] What is a relationship? (was whoami (was [IdAS] Context open/close semantics))
  - From: Greg Byrd
- [higgins-dev] DigitalSubjectRef (was What is a relationship?)
  - From: Tom Doman
- Re: [higgins-dev] DigitalSubjectRef (was What is a relationship?)
  - From: Jim Sermersheim
- Re: [higgins-dev] DigitalSubjectRef (was What is a relationship?)
  - From: Greg Byrd

Prev by Date: RE: [higgins-dev] [IdAS] registered Contexts
Next by Date: RE: [higgins-dev] [IdAS] registered Contexts
Previous by thread: Re: [higgins-dev] DigitalSubjectRef (was What is a relationship?)
Next by thread: Re: [higgins-dev] CUID re-use (was something else)
Index(es):
- Date
- Thread

Breadcrumbs