[JBoss JIRA] (TEIID-5798) Mixed PERMISSION GRANTS

Friday, 21 February 2020

    [
https://issues.redhat.com/browse/TEIID-5798?page=com.atlassian.jira.plugi...
] 

Steven Hawkins commented on TEIID-5798:
---------------------------------------

It seems that there are several issues with our interpretation of ddl imperative
grant/revoke vs. the old declarative xml model.  First it is not aware of drops:

create foreign table t ...
revoke insert on t to ...
drop table t;
create foreign table t ...  -- the new t still has insert revoked

Next, it is not hierarchical:

if you grant / revoke at the database/table/schema level that needs to cascade through the
tree of  children.  

grant ...
revoke ...
-- etc.
grant all on database to superuser; -- should remove all revokes

...
 Mixed PERMISSION GRANTS
 -----------------------

                 Key: TEIID-5798
                 URL: https://issues.redhat.com/browse/TEIID-5798
             Project: Teiid
          Issue Type: Enhancement
          Components: Query Engine
            Reporter: Christoph John
            Assignee: Steven Hawkins
            Priority: Major
             Fix For: 13.1

   Original Estimate: 6 hours
          Time Spent: 4 hours
  Remaining Estimate: 1 day, 6 hours

 Hello,
 I am currently trying to set a set of permissions on a table/view. Hence a condition on
INSERT,UPDATE,DELETE and an unconditioned SELECT.
 However, it seems that conditioned and unconditioned GRANT statements do not work
together.
 {code}
 GRANT INSERT,UPDATE,DELETE ON TABLE "my_nutri_diary.UserDefinedProducts_SRC"
CONDITION 'UserDefinedProducts_SRC.fkProfile in  (SELECT Account.idProfile FROM
Account WHERE Account.uuidUser = LEFT(user(), 36) )' TO odata;
 GRANT SELECT ON TABLE "my_nutri_diary.UserDefinedProducts_SRC" TO odata;
 REVOKE ALTER,EXECUTE ON TABLE "my_nutri_diary.UserDefinedProducts_SRC" FROM
odata;
 {code} 

--
This message was sent by Atlassian Jira
(v7.13.8#713008)

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009