[
https://issues.apache.org/jira/browse/DERBY-2207?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12643288#action_12643288
]
Rick Hillegas commented on DERBY-2207:
--------------------------------------
Hi Dag,
Thanks for the revised spec. As I read section 5.9, I wondered if you could
clarify what should happen in the following situation:
create role A;
create role B;
grant A to B;
grant B to FRED;
revoke A from FRED;
At this point should FRED be able to do the following:
1) "set role A"
2) "set role B" then access objects which need privileges granted to A?
Thanks,
-Rick
> Improve usability of Derby's client/server security by implementing ANSI Roles
> ------------------------------------------------------------------------------
>
> Key: DERBY-2207
> URL: https://issues.apache.org/jira/browse/DERBY-2207
> Project: Derby
> Issue Type: New Feature
> Components: Security, SQL
> Reporter: Rick Hillegas
> Assignee: Dag H. Wanvik
> Attachments: spec.html, spec.html, spec.html, spec.html, spec.html,
> spec.html, spec.html, spec.html, spec.html
>
>
> Implementing ANSI Roles will make it easier to manage security for multi-user
> applications with high user turnover.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
