Uploaded image for project: 'Cassandra'
  1. Cassandra
  2. CASSANDRA-9892

Add support for unsandboxed UDF

    XMLWordPrintableJSON

Details

    Description

      From discussion on CASSANDRA-9402,

      The approach postgresql takes is to distinguish between "trusted" (sandboxed) and "untrusted" (anything goes) UDF languages.

      Creating an untrusted language always requires superuser mode. Once that is done, creating functions in it requires nothing special.

      Personally I would be fine with this approach, but I think it would be more useful to have the extra permission on creating the function, and also wouldn't require adding explicit CREATE LANGUAGE.

      So I'd suggest just providing different CQL permissions for trusted and untrusted, i.e. if you have CREATE FUNCTION permission that allows you to create sandboxed UDF, but you can only create unsandboxed if you have CREATE UNTRUSTED.

      Attachments

        Issue Links

          is related to

          Task - A task that needs to be done. CASSANDRA-9402 Implement proper sandboxing for UDFs

          • Urgent - This issue should block release until it is resolved, and trigger immediate release once resolved.
          • Resolved
          relates to

          New Feature - A new feature of the product, which has yet to be developed. CASSANDRA-9481 FENCED UDFs

          • Normal -
          • Resolved
          links to

          Web Link Git branch

          Activity

            People

              snazy Robert Stupp
              jbellis Jonathan Ellis
              Robert Stupp
              Votes:
              1 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

                Created:
                Updated: