tags:

views:

59

answers:

1
+4  Q: 

Installable Google App Engine Apps

When an app is designed with the intention of being made as an Installable App in the App Marketplace for GAE, are there any extra steps the developer should take concerning security? For instance, if Company A installs the app, and Company B installs the app, do they each have their own datastore? If not, how do I, as the developer, separate the two? I have lots of concerns about this, I don't want to get to far along in the development of my project just to have to rip out half the code and start over.

I have a lot of questions about this entire process, and I haven't been able to gain a lot of practical information from the GAE docs. I know that I have to create the application manifest, and deploy the app, and so forth, I'm just curious how you create an app that is ready for and respectful of the multiple organizations that will use it and their privacy.

Any information or links to information would be great.

Thanks.

+2  A: 

No, individual users do not get separate datastores - the Apps marketplace and App Engine are separate, so there's no magic integration here. We just announced the prerelease of 1.3.6, however, which includes namespace support. This means that you can use a separate namespace for each customer, effectively isolating their data from one another, so you can't accidentally leak data between domains.

Nick Johnson  2010-08-07 17:14:10
This is for Java, I found the same announcement for Python here: http://groups.google.com/group/google-appengine-python/browse_thread/thread/685321ded5aca69a I'm going to review this and see if it clears anything up for me.
Timbermar  2010-08-07 19:36:04
I've been checking into this namespace functionality, and I found this example in the google sample apps, http://code.google.com/p/google-app-engine-samples/source/browse/trunk/guestbook_namespaces/appengine_config.py, Is this all the code I need to use to have a working namespace systems that "isolates" datastores? Also, is there anywhere I can find a decent writeup on this feature?
Timbermar  2010-08-11 20:24:05
Yes, that's all that's needed for basic namespace isolation. There's no documentation to speak of yet because it's still prerelease - expect proper docs when 1.3.6 comes out.
Nick Johnson  2010-08-11 20:46:21

related questions

Data recovery mechanics, is it possible to recover items from the hard drive?
IIS 6 Tuning Guide?
How do you convert VARCHAR to TIMESTAMP in MSSQL?
JavaScript: How to detect that the Internet connection is offline?
SQL Server Reporting Services 2005 - How to Handle Empty Reports
What is the best way to learn C? What next after K&R?
Running Trac on Windows?
Can anyone recommend a primer to Erlang?
XNA Game Studio 3D model editor suggestions
What is a good tutorial/howto on .net / c# socket programming.
"Expires" in http header for static content? how-to
MVC C# custom MvcRouteHandler - How to?
How do I enable more than 8-bit colors in Terminal.app?
Using CSS how best to display name value pairs?
Developing a online exam application, how do I prevent cheaters?
How to get a pay raise?
How to learn Python?
HowTo Disable WebBrowser 'Click Sound' in your app only.
How do I debug Javascript in Visual Studio 2005?
Preferred way to use favicons?
How do you mock a Sealed class?
How do you create your own moniker (URL Protocol) on Windows systems?
My website got hacked... What should I do?
How do you disable browser Autocomplete on web form field / input tag?
How to transition to Functional Programming