Uploaded image for project: 'Derby'
  1. Derby
  2. DERBY-866

Derby User Management Enhancements

    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 10.2.1.6
    • Fix Version/s: 10.9.1.0
    • Component/s: Services
    • Labels:
      None
    • Urgency:
      Normal
    • Issue & fix info:
      Patch Available
    • Bug behavior facts:
      Security

      Description

      Proposal to enhance Derby's Built-In DDL User Management. (See proposal spec attached to the JIRA).

      Abstract:

      This feature aims at improving the way BUILT-IN users are managed in Derby by providing a more intuitive and familiar DDL interface. Currently (in 10.1.2.1), Built-In users can be defined at the system and/or database level. Users created at the system level can be defined via JVM or/and Derby system properties in the derby.properties file. Built-in users created at the database level are defined via a call to a Derby system procedure (SYSCS_UTIL.SYSCS_SET_DATABASE_PROPERTY) which sets a database property.

      Defining a user at the system level is very convenient and practical during the development phase (EOD) of an application - However, the user's password is not encrypted and consequently appears in clear in the derby.properties file. Hence, for an application going into production, whether it is embedded or not, it is preferable to create users at the database level where the password is encrypted.

      There is no real ANSI SQL standard for managing users in SQL but by providing a more intuitive and known interface, it will ease Built-In User management at the database level as well as Derby's adoption.

        Attachments

        1. UserManagement.html
          16 kB
          Richard N. Hillegas
        2. UserManagement.html
          22 kB
          Richard N. Hillegas
        3. UserManagement.html
          25 kB
          Richard N. Hillegas
        4. UserManagement.html
          31 kB
          Richard N. Hillegas
        5. UserManagement.html
          33 kB
          Richard N. Hillegas
        6. UserManagement.html
          34 kB
          Richard N. Hillegas
        7. UserManagement.html
          36 kB
          Richard N. Hillegas
        8. releaseNote.html
          4 kB
          Richard N. Hillegas
        9. releaseNote.html
          4 kB
          Richard N. Hillegas
        10. dummyCredentials.properties
          0.1 kB
          Richard N. Hillegas
        11. DummyAuthenticator.java
          3 kB
          Richard N. Hillegas
        12. derby-866-24-aa-dboMustTurnOnSecurity.diff
          5 kB
          Richard N. Hillegas
        13. derby-866-23-aa-improveErrorMessages.diff
          2 kB
          Richard N. Hillegas
        14. derby-866-22-aa-dboFirst.diff
          50 kB
          Richard N. Hillegas
        15. derby-866-21-ab-emptyCredentials.diff
          10 kB
          Richard N. Hillegas
        16. derby-866-21-aa-emptyCredentials.diff
          8 kB
          Richard N. Hillegas
        17. derby-866-20-ab-npeAndUserProbing.diff
          5 kB
          Richard N. Hillegas
        18. derby-866-20-aa-npeAndUserProbing.diff
          6 kB
          Richard N. Hillegas
        19. derby-866-19-aa-replicationTest.diff
          20 kB
          Richard N. Hillegas
        20. derby-866-18-aa-encryptedCredentialsDB.diff
          31 kB
          Richard N. Hillegas
        21. derby-866-17-aa-grantRevokeNative.diff
          6 kB
          Richard N. Hillegas
        22. derby-866-16-aa-credDBViaSubprotocol.diff
          15 kB
          Richard N. Hillegas
        23. derby-866-15-ae-dbInJarFileOrOnClasspath.diff
          34 kB
          Richard N. Hillegas
        24. derby-866-14-ac-badNativeSpec.diff
          13 kB
          Richard N. Hillegas
        25. derby-866-13-ab-systemWideOperationTests.diff
          14 kB
          Richard N. Hillegas
        26. derby-866-12-ac-passwordExpiration.diff
          23 kB
          Richard N. Hillegas
        27. derby-866-11-aa-upgradeTest.diff
          5 kB
          Richard N. Hillegas
        28. derby-866-10-ac-propChanging.diff
          30 kB
          Richard N. Hillegas
        29. derby-866-09-ae-nativeAuthenticationServiceWithTests.diff
          67 kB
          Richard N. Hillegas
        30. derby-866-09-ad-nativeAuthenticationService.diff
          40 kB
          Richard N. Hillegas
        31. derby-866-08-ad-passwordHasher.diff
          45 kB
          Richard N. Hillegas
        32. derby-866-08-ab-passwordHasher.diff
          40 kB
          Richard N. Hillegas
        33. derby-866-08-aa-passwordHasher.diff
          40 kB
          Richard N. Hillegas
        34. derby-866-07-aa-removeSQLPassword.diff
          45 kB
          Richard N. Hillegas
        35. derby-866-06-aa-upgradeFrom10.1.diff
          0.7 kB
          Richard N. Hillegas
        36. derby-866-05-aa-grantRevoke.diff
          2 kB
          Richard N. Hillegas
        37. derby-866-04-aa-fixRolesTest.diff
          2 kB
          Richard N. Hillegas
        38. derby-866-03-ab-resetModifyPassword.diff
          21 kB
          Richard N. Hillegas
        39. derby-866-03-aa-resetModifyPassword.diff
          20 kB
          Richard N. Hillegas
        40. derby-866-02-ag-createDropUser.diff
          68 kB
          Richard N. Hillegas
        41. derby-866-01-ab-sysusers.diff
          50 kB
          Richard N. Hillegas
        42. derby-866-01-aa-sysusers.diff
          48 kB
          Richard N. Hillegas
        43. Derby_User_Enhancement.html
          7 kB
          Francois Orsini
        44. Derby_User_Enhancement_v1.1.html
          8 kB
          Francois Orsini

          Issue Links

            Activity

              People

              • Assignee:
                rhillegas Richard N. Hillegas
                Reporter:
                forsini Francois Orsini
              • Votes:
                2 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: