[CASSANDRA-17501] Security admin separation of duties - ASF JIRA

XML

Word

Printable

JSON

Details

Type: New Feature
Status: Patch Available
Priority: Normal
Resolution: Unresolved
Fix Version/s: 5.0.x
Component/s: Feature/Authorization
Labels:
None

Change Category:
Operability
Complexity:
Normal
Platform:

All
Impacts:

None
Test and Documentation Plan:

Hide

See PR

Show
See PR

Description

This ticket is about enabling a sort of security admin role.

Think of a hospital with patient data which is very sensitive information. IT should be able to grant/revoke/restrict access to the data without having access to the data itself. This is the clear separation of duties between admins and users of the database we're after.

An example is along the lines:

As a superuser:
CREATE KEYSPACE patientdata …;
CREATE ROLE security_admin;
GRANT security_admin TO admin_guy;
GRANT AUTHORIZE FOR SELECT, MODIFY, EXECUTE ON patientdata TO security_admin;
RESTRICT SELECT, MODIFY, EXECUTE ON KEYSPACE patientdata TO security_admin;

As a security admin:
GRANT SELECT ON patientdata TO new_nurse;
GRANT SELECT, MODIFY ON patientdata TO doctor_house;

Original idea of snazy

Attachments

Issue Links

links to

CASSANDRA-17501 PR

CASSANDRA-17501 PR dtests

Activity

People

Assignee:: Berenguer Blasi

Reporter:: Berenguer Blasi

Votes:: 1 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 30/Mar/22 07:02

Updated:: 03/Apr/23 15:00