On Jun 5, 2006, at 11:50 PM, William K. Volkman wrote: > Users of the tables, particularly web applications, are > only granted the minimum SQL privileges necessary for their > tasks. The capability to execute DDL operations would > specifically be prohibited. It is only in small personal > type projects or, at most, initial development that that type > of interaction would occur. For most deployed applications > the "db.create(table)" would/should never (for security > reasons) be possible.
you understand that the issue is not involving DDL operations at all, it merely involves that a user, who has select access to a particular table, should be able to view information about the columns and constraints that comprise that table, right ? it makes no sense that information_schema will reveal the names and datatypes of a particular table's columns to a user, but not its primary key constraints. are you saying this is by design ? _______________________________________________ Sqlalchemy-users mailing list Sqlalchemy-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/sqlalchemy-users
