> - using individual database users to represent real users - giving end-to-end > authentication & allowing the use of features such as SQL Trace & fine > grained auditing
Does that mean that the number of open connections always equals the number of signed in users? > - using database roles to restrict access to data, and not relying wholly on > application enforced security So if you want to determine whether user X can see button Y, you have to query the database for particular role membership? Cheers, Eelco --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org