This is an extension of the per-bucket TRN and CRE locks.
Instead of just TRN and CRE, we should enable locks for every action.
The following should be checked for each action:
udefault(<bucket>/ACCESS_<action>,1,%#)
If it exists, it checks it and returns 1 or 0. If it does not exist, it
automatically assumes access rights to the action and returns 1.
It seems like a lot of access overkill, but we have no idea what users
will be ultimately doing with the system, and having the capability might
be useful to someone. This will require a change to every job command
that creates an action (not difficult, but tedious).
Original issue reported on code.google.com by Fleety...@gmail.com on 8 Jan 2010 at 3:26
Original issue reported on code.google.com by
Fleety...@gmail.com
on 8 Jan 2010 at 3:26