Versions Compared

Old Version 12

changes.mady.by.user Tom Coppeto

Saved on

compared with

New Version 13

changes.mady.by.user Tom Coppeto

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

then they can optimize for this case in a single call and implement it in a direct SQL query. They put such a method in their own Java interface and wire it to the db via an SQL query that joins the Organization, Appointment, Position, and Resource tables. It's now lightening fast.

...

 

Give Us Our New Method

The service architect inquires as to is brought in to make it official. She asks why these services have been joined together and she is told that the services do service design does not meet their needs. She is informed that if this new method was put into the OSIDsinterface, then it would be compliant.  There However, there isn't much she can do to affect the OSIDs within the time frame of this project's milestone. Not yet knowing the details of the problem she talks in generalities that -- "this is usually sign of a factoring issue." This is not is received well as has no impact because as fas as the project is concerned, she was already given the solution to the problem and simply has to execute.

On other projects, the service architect can generally align with one of the project roles to help get the others on board. She can speak to the product owner's vision or simplify the work of an OSID implementation developer. When it comes to performance issues, she is alone to defend the a methodology that appears to fly in the face of efficiency.

...

At the end of the day, it's all about saying yes or no to an Agent. The service architect looks at authorization without concerning herself with how it got there. Immediately she notices something disturbing. The application is performing its own authorization in the checkPlaceHold() method and not even allowing the Hold OSID Provider to perform its own authorization enforcement. The enforcement must occur within the provider and the Authorization OSID can be brought in to help it out. insert picture

Gliffy
nameHold Stack

An Authorization check based on an Agent, Function, and Qualifier. The Function is  

  • Agent: the authenticated entity
  • Function: "can create Hold

...

  • " "can update Hold" "can remove Hold"
  • Qualifier: ???

Qualifiers are the slipperiest of the bunch.