03.01.2012 18:20, Alex Peshkoff wrote: >> How deep in call stack we going to propagate CALLER privileges (UDR call >> some SQL statement which have UDR calls embedded and so on) ? > > May be unlimited?
No recursion is required at all. If UDP MY_PROC selects UDF MY_FUNC from table T1 and MY_FUNC in turn selects from table T2, then the following permissions are required: - grant execute on MY_PROC to CURRENT_USER - grant select on T1 to MY_PROC - grant execute on MY_FUNC to MY_PROC - grant select on T2 to MY_FUNC Dmitry ------------------------------------------------------------------------------ Write once. Port to many. Get the SDK and tools to simplify cross-platform app development. Create new or port existing apps to sell to consumers worldwide. Explore the Intel AppUpSM program developer opportunity. appdeveloper.intel.com/join http://p.sf.net/sfu/intel-appdev Firebird-Devel mailing list, web interface at https://lists.sourceforge.net/lists/listinfo/firebird-devel
