[teiid-issues] [JBoss JIRA] (TEIID-5798) Mixed PERMISSION GRANTS
Steven Hawkins (Jira)
issues at jboss.org
Thu Feb 20 11:02:20 EST 2020
[ https://issues.redhat.com/browse/TEIID-5798?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13978485#comment-13978485 ]
Steven Hawkins commented on TEIID-5798:
---------------------------------------
I've circled back to this. If I can fit this in by end of week, then it should be good for 13.1. However I'm not liking the scope of the changes. We effectively have 3 domains for the security constructs - ddl, xml, and runtime - and there's quite a bit or wiring to introduce a new construct.
> Mixed PERMISSION GRANTS
> -----------------------
>
> Key: TEIID-5798
> URL: https://issues.redhat.com/browse/TEIID-5798
> Project: Teiid
> Issue Type: Enhancement
> Components: Query Engine
> Reporter: Christoph John
> Assignee: Steven Hawkins
> Priority: Major
> Fix For: 13.1
>
> Original Estimate: 6 hours
> Time Spent: 4 hours
> Remaining Estimate: 1 day, 6 hours
>
> Hello,
> I am currently trying to set a set of permissions on a table/view. Hence a condition on INSERT,UPDATE,DELETE and an unconditioned SELECT.
> However, it seems that conditioned and unconditioned GRANT statements do not work together.
> {code}
> GRANT INSERT,UPDATE,DELETE ON TABLE "my_nutri_diary.UserDefinedProducts_SRC" CONDITION 'UserDefinedProducts_SRC.fkProfile in (SELECT Account.idProfile FROM Account WHERE Account.uuidUser = LEFT(user(), 36) )' TO odata;
> GRANT SELECT ON TABLE "my_nutri_diary.UserDefinedProducts_SRC" TO odata;
> REVOKE ALTER,EXECUTE ON TABLE "my_nutri_diary.UserDefinedProducts_SRC" FROM odata;
> {code}
--
This message was sent by Atlassian Jira
(v7.13.8#713008)
More information about the teiid-issues
mailing list