Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note

gnumed-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note

From:	Karsten Hilbert
Subject:	Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note
Date:	Sat, 7 Nov 2009 21:52:59 +0100
User-agent:	Mutt/1.5.20 (2009-06-14)

On Sat, Nov 07, 2009 at 09:33:22PM +0100, Hilbert, Sebastian wrote:

> > > Karsten, if the affected row were to be refused access permissions
> > 
> > This is not easily possible. PostgreSQL so far does not
> > natively support row level access permissions.
> > 
> All I could find is that 
> http://bytes.com/topic/postgresql/answers/422181-row-level-security-possible

Again, natively it doesn't support it. PG only recently (8.4
I think) gained *column* level permissions.

There is a system called "Veil" which puts a layer of views
on top of the normal views / tables in which the WHERE
clause validates against permissions set in other tables.
This is quite effective and is my preferred solution when we
attempt to implement this fully.

Karsten
-- 
GPG key ID E4071346 @ wwwkeys.pgp.net
E167 67FD A291 2BEA 73BD  4537 78B9 A9F9 E407 1346

[Prev in Thread]

Current Thread

[Next in Thread]

[Gnumed-devel] CCHIT - access restrictions per SOAP note, Sebastian Hilbert, 2009/11/07
- Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note, Jim Busser, 2009/11/07
  - Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note, Jim Busser, 2009/11/07
  - Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note, Karsten Hilbert, 2009/11/07
    - Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note, Sebastian Hilbert, 2009/11/07
    - Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note, Karsten Hilbert <=
    - Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note, Jim Busser, 2009/11/11
    - Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note, Karsten Hilbert, 2009/11/11
    - Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note, Jim Busser, 2009/11/11
    - Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note, Verbus Counts, 2009/11/11
    - Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note, Karsten Hilbert, 2009/11/11
- Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note, Karsten Hilbert, 2009/11/07
  - Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note, Sebastian Hilbert, 2009/11/07
    - Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note, Karsten Hilbert, 2009/11/07

Prev by Date: Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note
Next by Date: Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note
Previous by thread: Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note
Next by thread: Re: [Gnumed-devel] CCHIT - access restrictions per SOAP note
Index(es):
- Date
- Thread