Uploaded image for project: 'Cassandra'
  1. Cassandra
  2. CASSANDRA-8394 Cassandra 3.0 Auth changes
  3. CASSANDRA-8650

Creation and maintenance of roles should not require superuser status

    Details

      Description

      Currently, only roles with superuser status are permitted to create/drop/grant/revoke roles, which violates the principal of least privilege. In addition, in order to run ALTER ROLE statements a user must log in directly as that role or else be a superuser. This requirement increases the (ab)use of superuser privileges, especially where roles are created without LOGIN privileges to model groups of permissions granted to individual db users. In this scenario, a superuser is always required if such roles are to be granted and modified.

      We should add more granular permissions to allow administration of roles without requiring superuser status.

        Attachments

        1. 8650.txt
          21 kB
          Sam Tunnicliffe
        2. 8650-v2.txt
          34 kB
          Sam Tunnicliffe
        3. 8650-v3.txt
          38 kB
          Sam Tunnicliffe

          Issue Links

            Activity

              People

              • Assignee:
                beobal Sam Tunnicliffe
                Reporter:
                beobal Sam Tunnicliffe
                Authors:
                Sam Tunnicliffe
                Reviewers:
                Aleksey Yeschenko
                Tester:
                Philip Thompson
              • Votes:
                0 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: