Hello Sriveena, We're looking into this and keep you posted on a solution.
- Denis On Fri, Mar 13, 2020 at 2:47 AM Sriveena Mattaparthi < [email protected]> wrote: > Please suggest on ways to override the ignite configurations to start h2 > database user with a custom user who has low privileges. > > > > Thanks, > > Sriveena > > > > *From:* Sriveena Mattaparthi > *Sent:* 12 March 2020 15:42 > *To:* [email protected] > *Subject:* Security threat due to H2 admin privileges for Ignite > > > > Hi, > > > > We are using ignite to run join queries which are handwritten by user. > > We have got a security threat using ignite as ignite is using h2 with > admin privilieges. > > > > Which means user can execute any kind of system functions like filewrite, > fileread etc. > > Is there a way to start ignite with a low privileged h2 user who doesn’t > have admin access to perform any of the system functions? > > Please help. > > > > Thanks, > Sriveena > > > “Confidentiality Notice: The contents of this email message and any > attachments are intended solely for the addressee(s) and may contain > confidential and/or privileged information and may be legally protected > from disclosure. If you are not the intended recipient of this message or > their agent, or if this message has been addressed to you in error, please > immediately alert the sender by reply email and then delete this message > and any attachments. If you are not the intended recipient, you are hereby > notified that any use, dissemination, copying, or storage of this message > or its attachments is strictly prohibited.” >
