[teiid-issues] [JBoss JIRA] (TEIID-2844) remove unauthorized columns from select *
Steven Hawkins (JIRA)
issues at jboss.org
Fri Feb 7 10:50:28 EST 2014
[ https://issues.jboss.org/browse/TEIID-2844?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12942670#comment-12942670 ]
Steven Hawkins commented on TEIID-2844:
---------------------------------------
The approach here will be to handle this on the server side close to the AuthorizationValidationVisitor. The logic does support the concept of modifying the query as part of the authorization, so it should be straight-forward to remove the extra columns. However with the current logic it will inhibit plan and result set caching for modified queries - but that can be addressed later.
Possibilities for enabling this feature include:
a vdb property
a connection property
a server side configuration
a system property
I'm leaning toward using a vdb property and possibly a system property to control the system wide default behavior.
> remove unauthorized columns from select *
> -----------------------------------------
>
> Key: TEIID-2844
> URL: https://issues.jboss.org/browse/TEIID-2844
> Project: Teiid
> Issue Type: Enhancement
> Components: Query Engine
> Reporter: Steven Hawkins
> Assignee: Steven Hawkins
> Fix For: 8.7
>
>
> For ease of use with entitlement checking enabled, user queries with select * and *.tbl, should simply not treat unauthorized columns as selectable.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the teiid-issues
mailing list