[jira] Updated: (DERBY-2264) Restrict shutdown, upgrade, and encryption powers to the database owner

Wed, 30 May 2007 14:13:37 -0700 

     [ 
https://issues.apache.org/jira/browse/DERBY-2264?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Dag H. Wanvik updated DERBY-2264:
---------------------------------

    Attachment: DERBY-2264-8.stat
                DERBY-2264-8.diff

Uploading a patch which removes the enforcement of dbo powers 
in the case where authentication is enabled, but sqlAuthorization is
not enabled. This is done as a result of recent discussions on 
derby-dev which reveal concern that such enforcement may break too 
many existing applications.

This patch is not ready for commit, I am running regression tests on it now, 
but I upload it now in case somebody wants to play with it.

If we decide this is the way to go, I will commit it when all tests have 
been run. Attachment releaseNotes.html will need modification as well.

Patch details:

- modifies EmbedConnection.java to also require sqlAuthorization in
  addition to authentication for dbo powers enforcement

- modifies DboPowersTest.java correspondingly (before the change to the
  test, it correctly flagged the modified behavior)


> Restrict shutdown, upgrade, and encryption powers to the database owner
> -----------------------------------------------------------------------
>
>                 Key: DERBY-2264
>                 URL: https://issues.apache.org/jira/browse/DERBY-2264
>             Project: Derby
>          Issue Type: New Feature
>          Components: Security, SQL
>            Reporter: Rick Hillegas
>            Assignee: Dag H. Wanvik
>         Attachments: dbaPowers.html, dbaPowers.html, DERBY-2264-1.diff, 
> DERBY-2264-1.stat, DERBY-2264-2.diff, DERBY-2264-2.stat, DERBY-2264-3.diff, 
> DERBY-2264-3.stat, DERBY-2264-4.diff, DERBY-2264-4.stat, DERBY-2264-5.diff, 
> DERBY-2264-5.stat, DERBY-2264-6.diff, DERBY-2264-6.stat, DERBY-2264-6b.diff, 
> DERBY-2264-6b.stat, DERBY-2264-7.diff, DERBY-2264-7.stat, DERBY-2264-8.diff, 
> DERBY-2264-8.stat, encrypt-1b.sql, encrypt-2.sql, encrypt-3.sql, 
> releaseNote.html
>
>
> This JIRA separates out the database-owner powers from the system privileges 
> in the master security JIRA DERBY-2109. Restrict the following powers to the 
> database owner for the moment: shutdown, upgrade, and encryption.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

Reply via email to