Date: Mon, 17 Feb 2020 12:01:14 +0000 From: Igor Mozolevsky <igor@hybrid-lab.co.uk> To: Anthony Pankov <ap00@mail.ru> Cc: FreeBSD Hackers <freebsd-hackers@freebsd.org> Subject: Re: is there a future for user accounting (getpw* replacement) Message-ID: <CADWvR2hG_gWYK=HZsDf5XRR%2BHq2%2B9c-KeUP3Cj0H4ZQOzRpPyw@mail.gmail.com> In-Reply-To: <661730512.20200217141432@mail.ru> References: <661730512.20200217141432@mail.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 17 Feb 2020 at 11:15, Anthony Pankov via freebsd-hackers <freebsd-hackers@freebsd.org> wrote: > > Greetings, > > I'm wondering has anybody any thoughts about user accounting > provided at the system level? > > It seems that getpw* doesn't suit the needs of application services. > All applications has some external/internal mechanism for storing and > retrieving user properties (settings, roles etc). Furthermore they > implement own security policy based on this mechanism. > > Mostly it is done via LDAP connection or internal store (as for database). > > It seems that all application developers will be more happy if OS will > have a few functions to do the things such as: > - list users of some type; > - get user properties specific to application; > - get user roles specific to application > -? > > Does anybody has thoughts about what OS must provide to keep > applications consistency and make developers happier? I think it's dangerous to conflate *application* users with *system* users, why would you want to do that in the first place? -- Igor M.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CADWvR2hG_gWYK=HZsDf5XRR%2BHq2%2B9c-KeUP3Cj0H4ZQOzRpPyw>