Hi,
root.sg.** should be a legal path.
If a user has read permission under root.sg.**, he could query all paths
like root.sg.x.x (a sub pattern of root.sg.**)
Thanks,
—
Jialin Qiao
Apache IoTDB PMC
Xiangdong Huang 于2022年5月8日周日 19:48写道:
> Hi,
>
> Just want to make a
Hi,
Just want to make a confirmation: so we cannot grant privileges to
'root.sg.**'.
It is illegal, right?
---
Xiangdong Huang
School of Software, Tsinghua University
黄向东
清华大学 软件学院
周钰坤 于2022年5月6日周五 19:14写道:
> Hi
>
> Currently, the rule of iotdb's auth check
Hi
Currently, the rule of iotdb's auth check is prefix match, which is
inconsistent with pattern match in DDL and DML. Therefore, we want to
refactor the rule to pattern match.
For example, an old sql, 'GRANT USER ln_write_user PRIVILEGES
INSERT_TIMESERIES on root.ln', won't work any more. The
