[asterisk-dev] Asterisk 12 API improvements
Olle E. Johansson
oej at edvina.net
Tue Dec 4 00:57:40 CST 2012
4 dec 2012 kl. 04:31 skrev David M. Lee <dlee at digium.com>:
>> I also agree with Olle on the granularity of permissions of users within this API, but for a different reason, the AMI has basic granularity in terms of what it's able to do, which is used enormously, why wouldn't you do something similar within this new API system?
>
> Others in the thread have covered the problems we've had with AMI's granular permissions.
>
> I think I need to reword that requirement to be more clear. I'm not saying we'll never have any sort of authorization scheme with the new API. What we're getting at is that it's not a requirement for a v1 API, and we have the time to think through the use cases and get the permissions right.
>
For clarification: I did not say anything about the current AMI permissions. I just said what's been missing in AMI (and many parts of Asterisk) is a partitioning system connected to the authorization, so that one can do multihosting.
This affects many parts of the design of a new API and should be there from start. I think Tilghman's proposal of tags is a good one, and is similar to what we've done to hack the AMI. My originate setvar and Tilghman's channel variable event filters work hand in hand to add some sort of "group" or "partition" concept to AMI. This is not something one can add afterwards, I strongly feel it needs to be in the design specs from start.
/O
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.digium.com/pipermail/asterisk-dev/attachments/20121204/43d5c44e/attachment.htm>
More information about the asterisk-dev
mailing list