>>> Greg Byrd gbyrd@xxxxxxxx> 8/15/06 2:12 PM >>
<mailto:gbyrd@xxxxxxxx%3E%208/15/06%202:12%20PM%20%3E%3E>
<snip>
>Can a Context reuse the CUID of a DigitalSubject that has been removed?
>If so, then we can't assume that today's URI+CUID will refer to the same
>DigitalSubject as tomorrow's. But to say that a CUID can't be recycled
>seems too restrictive to me.
In practice, I feel fairly strongly to the contrary. Where a CUID is
used to grant permissions to a resource, the recycling of a CUID is a
bad thing. For example: a superuser account is created and issued a
cuid. This cuid is listed as a subject being granted permissions
(maybe directly on a resource, maybe in a role object, but somewhere
other than on the superuser's object itself). The superuser object is
removed and its cuid re-used when an ordinary-joe object is created,
and now ordinary-joe has unexpected permissions.
Whether that means we should go about prescribing the non re-usability
of CUIDs, I don't know -- we should at least strongly suggest against it.
Jim
------------------------------------------------------------------------
_______________________________________________
higgins-dev mailing list
higgins-dev@xxxxxxxxxxx
https://dev.eclipse.org/mailman/listinfo/higgins-dev