| From: | Charles Pritchard <chuck(at)jumis(dot)com> |
|---|---|
| To: | Alvaro Herrera <alvherre(at)commandprompt(dot)com> |
| Cc: | pgsql-hackers <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: W3C Specs: Web SQL |
| Date: | 2010-11-08 18:36:16 |
| Message-ID: | 4CD84320.4030400@jumis.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On 11/8/2010 7:55 AM, Alvaro Herrera wrote:
> Excerpts from Charles Pritchard's message of sáb nov 06 23:20:13 -0300 2010:
>
>> Simple async sql sub-set (the spec in trouble):
>> http://dev.w3.org/html5/webdatabase/
> This is insane. This spec allows the server to run arbitrary SQL
> commands on the client, AFAICT. That seems like infinite joy for
> malicious people running webservers. The more powerful the dialect of
> SQL the client implements, the more dangerous it is.
Because of a lack of "interested implementers", the spec does not put
forward a standard dialect/subset. It simply uses Sqlite.
Obviously, access should be restricted per the security section: a given
domain may only run commands that modify its own database.
Remember, this is client-side, in respect to "implementations". Each
domain (origin) would behave as its own unique user with its own unique
database (or namespace).
That said, there are a few Server side JS apps around, and they're
certainly more agile than browser vendors: the "openDatabase" command
does not encompass
credentials for multi-user situations in SSJS [again, because it's glued
to the origin, on client-side].
With postgres current security options, I don't see that being a
difficult issue.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2010-11-08 18:36:26 | Re: How to share the result data of separated plan |
| Previous Message | Tom Lane | 2010-11-08 18:30:58 | Re: How to share the result data of separated plan |