[
https://issues.apache.org/jira/browse/DERBY-2264?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12474774
]
Rick Hillegas commented on DERBY-2264:
--------------------------------------
Hi Dag,
I agree with your analysis. (1) seems like a separate itch which someone else
may or may not want to scratch.
Your approach to (2) and (3) sounds good to me too. In the case that the
(re-)encrypting user fails to authenticate, we will just be left with a special
case of (1).
> Restrict shutdown, upgrade, and encryption powers to the database owner
> -----------------------------------------------------------------------
>
> Key: DERBY-2264
> URL: https://issues.apache.org/jira/browse/DERBY-2264
> Project: Derby
> Issue Type: New Feature
> Components: Security, SQL
> Reporter: Rick Hillegas
> Assigned To: Dag H. Wanvik
> Attachments: dbaPowers.html, dbaPowers.html, DERBY-2264-1.diff,
> DERBY-2264-1.stat, encrypt-1b.sql, encrypt-2.sql, encrypt-3.sql
>
>
> This JIRA separates out the database-owner powers from the system privileges
> in the master security JIRA DERBY-2109. Restrict the following powers to the
> database owner for the moment: shutdown, upgrade, and encryption.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
