Uploaded image for project: 'Cassandra'
  1. Cassandra
  2. CASSANDRA-8394 Cassandra 3.0 Auth changes
  3. CASSANDRA-8650

Creation and maintenance of roles should not require superuser status

    XMLWordPrintableJSON

Details

    Description

      Currently, only roles with superuser status are permitted to create/drop/grant/revoke roles, which violates the principal of least privilege. In addition, in order to run ALTER ROLE statements a user must log in directly as that role or else be a superuser. This requirement increases the (ab)use of superuser privileges, especially where roles are created without LOGIN privileges to model groups of permissions granted to individual db users. In this scenario, a superuser is always required if such roles are to be granted and modified.

      We should add more granular permissions to allow administration of roles without requiring superuser status.

      Attachments

        1. 8650.txt
          21 kB
          Sam Tunnicliffe
        2. 8650-v2.txt
          34 kB
          Sam Tunnicliffe
        3. 8650-v3.txt
          38 kB
          Sam Tunnicliffe

        Issue Links

          Activity

            People

              samt Sam Tunnicliffe
              samt Sam Tunnicliffe
              Sam Tunnicliffe
              Aleksey Yeschenko
              Philip Thompson Philip Thompson
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: