[jira] [Commented] (CASSANDRA-16902) A user should be able to view permissions of role they created

Tue, 26 Oct 2021 09:56:06 -0700 


    [ 
https://issues.apache.org/jira/browse/CASSANDRA-16902?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17434468#comment-17434468
 ] 

Andres de la Peña commented on CASSANDRA-16902:
-----------------------------------------------

I also think that we don't need to port back those test improvements. Besides 
CASSANDRA-17027, we would also need some stuff from CASSANDRA-16918, 
CASSANDRA-16404 and CASSANDRA-14497, and I'm not sure that is a good idea to 
apply so many changes to the relatively stable older branches for a mainly 
cosmetic improvement.

Here is a final CI round after rebase, including repeated runs of the 
new/modified tests:
||PR||CI||
|[3.0|https://github.com/apache/cassandra/pull/1233]|[j8|https://app.circleci.com/pipelines/github/adelapena/cassandra/1085/workflows/299084af-60a7-4637-9448-6eb62e7b36ba]|
|[3.11|https://github.com/apache/cassandra/pull/1234]|[j8|https://app.circleci.com/pipelines/github/adelapena/cassandra/1086/workflows/935b5a9c-b2da-42b1-a224-573f6d387c31]|
|[4.0|https://github.com/apache/cassandra/pull/1235]|[j8|https://app.circleci.com/pipelines/github/adelapena/cassandra/1088/workflows/1f421ce7-f6ad-41e8-8ee4-4726b716e279]
 
[j11|https://app.circleci.com/pipelines/github/adelapena/cassandra/1088/workflows/a1de585a-aa03-4d1b-a9ca-07e660f86ea9]|
|[trunk|https://github.com/apache/cassandra/pull/1179]|[j8|https://app.circleci.com/pipelines/github/adelapena/cassandra/1087/workflows/af2ce406-b50e-4e67-828f-5bc96ed12eb8]
 
[j11|https://app.circleci.com/pipelines/github/adelapena/cassandra/1087/workflows/3a6f102a-1827-42b3-978c-8fc12b221033]|
|[dtest|https://github.com/apache/cassandra-dtest/pull/157]|

> A user should be able to view permissions of role they created
> --------------------------------------------------------------
>
>                 Key: CASSANDRA-16902
>                 URL: https://issues.apache.org/jira/browse/CASSANDRA-16902
>             Project: Cassandra
>          Issue Type: Bug
>          Components: Feature/Authorization
>            Reporter: Andres de la Peña
>            Assignee: Andres de la Peña
>            Priority: Normal
>          Time Spent: 50m
>  Remaining Estimate: 0h
>
> Currently users are denied to view permissions to see a role they created:
> {code}
> CREATE ROLE parent WITH PASSWORD = 'x' AND LOGIN = true;
> GRANT CREATE ON ALL ROLES TO parent;
> LOGIN parent;
> CREATE ROLE child WITH PASSWORD = 'x' AND LOGIN = true;
> LIST ALL PERMISSIONS OF 'child'; -- You are not authorized to view child's 
> permissions
> {code}
> When a user creates a role they should get the {{DESCRIBE}} permission on 
> that role by default.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to