1. Dabo Application superuser password is stored in client computer
2. Dabo Application login-ins to database as super-user always
I don't fully understand... the Dabo Application logs in to the database
as whatever user that you specify in the cnxml file. If this is a
superuser, then yes it will log in as the superuser.
I have a user in my application which cannot see some tables (payroll data).
In the same computer, some other user can have full access.
It think it is unreasonable to create separate cnxml file for each user.
So prefer to have a table of user privileges which my application uses to
show menus to logged-in user and single cnxml file which contains login
information for full database access.
Unfortunately, non-privileged user can reverse-engineer password from cnxl
file, decompile my python appl or listen connection to obtain privileged
user password.
It is not reasonable to manage local user/password files in hundres of
standalone client computers. This requires a lot of programming. It is
better to manage dbms user list using admin tools shipped with dbms in
server database.
So is better to allow dbms to validate user name and password.
So I want to pass user/pass from security manager directly to dbms so that
dbms implements client authentication.
This was the main reason of my proposal.
4. It is not possible to send custom commands to database server at
application startup
What kind of commands do you want to send?
I have a multi-company Postgres 8.1 database.
Each company data is stored in a separate schema named company1, company2,
etc
Common data for all companies is stored in a public schema.
At appl startup I need to specify current company using commands in
validateLogin()
cursor = self.connection.getConnection().cursor()
cursor.execute("set search_path to public,company"+companynumber )
Currenty, the only way for this is to change dbPostgresql.py file directly.
I added the following code to the end of TestSecurityManager
validateLogin() procedure:
It it reasonable to add those changes to sample class ?
Can you provide a patch for me to review?
I havent create any cvs patches before.
Should I install and study the svn software for this ?
Andrus.
_______________________________________________
Post Messages to: [email protected]
Subscription Maintenance: http://leafe.com/mailman/listinfo/dabo-users
