Gao, Rui-Xian created TRAFODION-2203:
----------------------------------------
Summary: a user can grant privileges that he doesn’t have to
other users/roles successfully
Key: TRAFODION-2203
URL: https://issues.apache.org/jira/browse/TRAFODION-2203
Project: Apache Trafodion
Issue Type: Bug
Components: sql-security
Environment: Centos6.7
EsgynDB R2.2 0825daily
Reporter: Gao, Rui-Xian
Assignee: Roberta Marton
a user can grant privileges that he doesn’t have to other users/roles
successfully.
To reproduce --
root user --
create role role1;
create schema mysch;
set schema mysch;
create table tab1(a int, b int)no partition;
grant insert on tab1 to testuser1 with grant option;
connect as testuser1 --
set schema mysch;
SQL>grant select on tab1 to role1;
*** ERROR[1012] No privileges were granted. You lack grant option on the
specified privileges. [2016-09-01 15:31:33] //Rachel: this is expected
SQL>grant insert ,select on tab1 to role1;
--- SQL operation complete. // should return error, testuser1 doesn’t have
select privilege on tab1
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
