Details
-
Bug
-
Status: Closed
-
Critical
-
Resolution: Fixed
-
2.0-incubating
-
None
-
None
-
cloudera version -- CDH5.6
hortonworks version -- HDP2.3.4
Description
When security is enabled, any user can perform 'initialize trafodion,dorp' to drop all objects, we should limit the user to DB__ROOT only.
[trafodion@gyvm-1 security]$ trafci
Welcome to EsgynDB Enterprise Command Interface
Copyright (c) 2015-2016 Esgyn Corporation
Host Name/IP Address: gyvm-1.novalocal:23400
User Name: zz
-
-
- ERROR[8837] Invalid username or password. User: ZZ [2017-01-01 22:40:23]
-
User Name: qauser2
Password:
Role Name [Primary Role]:
Connected to EsgynDB Advanced
SQL>select * from user1sch.user1t;
-
-
- ERROR[4481] The user does not have SELECT privilege on table or view TRAFODION.USER1SCH.USER1T. [2017-01-01 22:41:03]
-
SQL>get component privileges on sql_operations for qauser2;
— SQL operation complete.
SQL>initialize trafodion,drop;
— SQL operation complete.