Derby
  1. Derby
  2. DERBY-2735

Add a system procedure to set a user's connection level authorization.

    Details

    • Type: Improvement Improvement
    • Status: Closed
    • Priority: Minor Minor
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 10.3.1.4
    • Component/s: SQL
    • Labels:
      None
    • Bug behavior facts:
      Security

      Description

      Add procedure & function to set (and get ) a user's connection authorization to full access, read-only or not defined.
      Based upon the existing UserUtility class but only exposing a single procedure that sets the permission. This is to avoid any appearance that the procedure adds a user.

      SYSCS_UTIL.SYSCS_SET_USER_ACCESS(VARCHAR(128) USERNAME, VARCHAR(8) CONNECTION_PERMISSION)

      Valid values for CONNECTION_PERMISSION

      FULL - Add the user to the list of full access users for the database, i.e. the database property derby.database.fullAccessUsers)
      READONLY - - Add the user to the list of read-only users for the database, i.e. the database property derby.database.readOnlyAccessUsers)
      NULL - remove the user from the list of permissions, reverting it to the default permission.

      SYSCS_UTIL.SYSCS_GET_USER_ACCESS(VARCHAR(128) USERNAME) RETURNS VARCHAR(8)

      Gets the current connection access permissions for the user, factors in the default connection mode.

      Return either FULL, READONLY, NO or NULL.

      (NO means connection attempt by user will be denied by the user not having an entry in derby.database.fullAccessUsers or derby.database.readOnlyAccessUsers and derby.database.defaultConnectionMode is set to noAccess)

      The names of the connection permissions match the existing names in use by Derby.

        Issue Links

          Activity

            People

            • Assignee:
              Daniel John Debrunner
              Reporter:
              Daniel John Debrunner
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Development