On Thu, Aug 25, 2016 at 12:20:45PM +0200, Richard Braun wrote: > I started thinking about these only a couple of weeks ago, and so far > the only solutions my limited brain can come up with is to either use > the client context (by perhaps passing its root) but that could cause > security issues, or have a third-party like auth (or proc or whatever) > store enough of this context that the server can use it.
Of course the problem with these approaches is making sure the user context can be trusted by the server, something that other systems such as Plan9 don't have to deal with, allowing them to implement solutions like the factotum. -- Richard Braun
