On Mon, Jun 28, 2010 at 1:45 PM, Marty Greenia <martygree...@gmail.com> wrote: > Would it ever be useful to someday have browser clients access cassandra > servers directly? I imagine that would be the most compelling scenario to > have REST API for.
This is an interesting idea, but introduces quite a few security complexities. Which keys will a particular browser client be allowed to overwrite? What prevents an end-user from deleting your database through AJAX calls? I think you'd need some form of ACL and access token system. That's a lot of complexity. Paul Prescod
