NexusDB

A major omission in current NexusDB versions is user/access control. There's only very limited server based support for read, write and administration rights. For the majority of tasks this is enough, but how would it be if a full featured control system like in SQL Server or Oracle would be available?

Thorsten is currently working on functionality in the database core that will extend the current basic access control functionality to support users (and user groups) and allowing/denying access to tasks/objects on a server, database, table and even field basis. Fortunately the NexusDB architecture has already notification support for all operations performed at core level, so implementing the functionality is possible without the need to change/rewrite a lot of code. That doesn't mean it's an easy task btw :)

We have also started to add this functionality to the NexusDB SQL grammar thereby complying as close as possible to the SQL:2003 standard. We intend to support GRANT, REVOKE, roles, privileges, etc but time will tell what makes sense from a performance point of view and what is problematic (for example field based access control could possibly be a major performance hog).

We'll keep you posted on the progress.