| From: | Douglas McNaught <doug(at)mcnaught(dot)org> |
|---|---|
| To: | "Kynn Jones" <kynnjo(at)gmail(dot)com> |
| Cc: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: Automating access grants |
| Date: | 2007-03-15 15:00:18 |
| Message-ID: | 876492imbh.fsf@suzuka.mcnaught.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
I would still recommend making it available as a web service rather
than giving direct access; besides the security/load issues, it lets
you change the representation of the data without necessarily
affecting customers (of course, you can do this also at the DB level
with views). The web service is a little extra work, but it lets you
re-use the data access layer that already exists in your web
application, so it's just a matter of putting a SOAP layer on top of
that.
My general philosophy is to only allow trusted apps/users to hit the
database directly.
-Doug
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Jasbinder Singh Bali | 2007-03-15 15:09:59 | Re: Exception handling in plperl |
| Previous Message | George Weaver | 2007-03-15 14:47:27 | Re: Is This A Set Based Solution? |