Uploaded image for project: 'Derby'
  1. Derby
  2. DERBY-464

Enhance Derby by adding grant/revoke support. Grant/Revoke provide finner level of privileges than currently provided by Derby that is especially useful in network configurations.

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 10.0.2.1, 10.1.1.0, 10.2.1.6
    • 10.2.1.6
    • SQL
    • None
    • generic
    • Normal

    Description

      Derby currently provides a very simple permissions scheme, which is quite suitable for an embedded database system. End users of embedded Derby do not see Derby directly; they talk to a application that embeds Derby. So Derby left most of the access control work to the application. Under this scheme, Derby limits access on a per database or per system basis. A user can be granted full, read-only, or no access.

      This is less suitable in a general purpose SQL server. When end users or diverse applications can issue SQL commands directly against the database, Derby must provide more precise mechanisms to limit who can do what with the database.

      I propose to enhance Derby by implementing a subset of grant/revoke capabilities as specified by the SQL standard. I envision this work to involve the following tasks, at least:

      1) Develop a specification of what capabilities I would like to add to Derby.
      2) Provide a high level implementation scheme.
      3) Pursue a staged development plan, with support for DDL added to Derby first.
      4) Add support for runtime checking of these privileges.
      5) Address migration and upgrade issues from previous releases and from old scheme to newer database.

      Since I think this is a large task, I would like to invite any interested people to work with me on this large and important enhancement to Derby.

      Attachments

        1. Privileges2.java
          47 kB
          Michelle Caisse
        2. Privileges.java
          47 kB
          Michelle Caisse
        3. grantRevokeSpec.html
          27 kB
          Satheesh E. Bandaram
        4. grantRevokeSpec_v5.html
          32 kB
          Satheesh E. Bandaram
        5. grantRevokeSpec_v4.html
          32 kB
          Mamta A. Satoor
        6. grantRevokeSpec_v4_1.html
          32 kB
          Mamta A. Satoor
        7. grantRevokeSpec_v3.html
          29 kB
          Satheesh E. Bandaram
        8. grantRevokeSpec_v2.html
          33 kB
          Satheesh E. Bandaram
        9. GrantRevokePartII.txt
          188 kB
          Satheesh E. Bandaram
        10. GrantRevokePartII.txt
          188 kB
          Satheesh E. Bandaram
        11. GrantRevokePartII.stat
          3 kB
          Satheesh E. Bandaram
        12. grantRevoke.stat.Dec5
          5 kB
          Satheesh E. Bandaram
        13. grantRevoke.patch.Dec5
          447 kB
          Satheesh E. Bandaram
        14. changeDescriptionPartII
          4 kB
          Satheesh E. Bandaram

        Issue Links

          incorporates

          Bug - A problem which impairs or prevents the functions of the product. DERBY-1523 Statements in cache need to depend on privileges and the appropriate statements in cache should get invalidated if those privileges change.

          • Major - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. DERBY-1521 Upgrade test needs to be enhanced to test grant revoke

          • Major - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. DERBY-1367 add lang/grantrevoke.java to derbynetclientmats

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. DERBY-1579 Remove SYS.SYSREQUIREDPERM from Derby 10.2. This was added for Grant Revoke functionality

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed

          Task - A task that needs to be done. DERBY-1522 Switch(if supported) from Derby Authorization to Derby SQL Standard Authorization needs to be tested

          • Major - Major loss of function.
          • Closed
          is related to

          Bug - A problem which impairs or prevents the functions of the product. DERBY-1523 Statements in cache need to depend on privileges and the appropriate statements in cache should get invalidated if those privileges change.

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. DERBY-1589 CREATE TABLE throws NullPointerException in Derby SQL Standard Authorization after DROPs and REVOKES

          • Major - Major loss of function.
          • Closed
          relates to

          Bug - A problem which impairs or prevents the functions of the product. DERBY-4268 "SECURITY" is reserved as SQL keyword.

          • Blocker - Blocks development and/or testing work, production could not run
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. DERBY-1538 Unexpected behavior on self privilege revocation

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. DERBY-1542 Implicit revoke via drop table does not clean up its associated row(s) in SYS.SYSTABLEPERMS

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. DERBY-1582 REVOKE statement does not generate a warning when no privileges are revoked.

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. DERBY-1583 With grant revoke enabled, defining a trigger whose actions updates a table (from different schema) results in NPE

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. DERBY-1592 Update statement is allowed to execute even though the column that the statement access has been revoked.

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. DERBY-1708 Unprivileged user can perform lock table statement on a table which he/she does not have any access rights

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. DERBY-1715 Revoke fails when grantee declares additional view that is on top of the view to be dropped

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. DERBY-1716 Revoking select privilege from a user times out when that user still have a cursor open.

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. DERBY-1723 Database owner revokes select privilege from a schema owner but owner is still able to select

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. DERBY-1724 Executing grant statement within a transaction leads to a NPE later when the db owner attempts to update a table

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. DERBY-1729 Invoking Java stored procedure that contains GRANT or REVOKE statement with CONTAINS SQL should fail.

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. DERBY-1738 An user is able to grant select privilege on a view but the underlying object is not own by the user.

          • Major - Major loss of function.
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. DERBY-1847 SELECT statement asserts with XJ001 when attempted to select a newly added column in SQL authorization mode

          • Major - Major loss of function.
          • Closed

          Activity

            People

              Unassigned Unassigned
              bandaram Satheesh E. Bandaram
              Votes:
              2 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: