Provide ability to manage users from security.db when connected to read-only
(user)-DB
--------------------------------------------------------------------------------------
Key: CORE-6152
URL: http://tracker.firebirdsql.org/browse/CORE-6152
Project: Firebird Core
Issue Type: Improvement
Components: Security
Reporter: Pavel Zotov
Priority: Minor
Connect as SYSDBA to any read-only database.
Then:
SQL> set list on;
SQL> select mon$read_only from mon$database;
MON$READ_ONLY 1
SQL> select * from sec$users;
SEC$USER_NAME SYSDBA
. . .
SEC$PLUGIN Legacy_UserManager
SEC$USER_NAME SYSDBA
. . .
SEC$PLUGIN Srp
SQL> drop user sysdba using plugin Srp;
Statement failed, SQLSTATE = 42000
Dynamic SQL Error
-attempted update on read-only database
SQL> drop user foo using plugin Srp;
Statement failed, SQLSTATE = 42000
Dynamic SQL Error
-attempted update on read-only database
It will be useful to have ability create/alter/drop users by granting this
priviledge to some user (for example, from HR department), but without giving
to him any other rights.
Ideally he must be able only to establish connect to some read-only DB.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://tracker.firebirdsql.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
Firebird-Devel mailing list, web interface at
https://lists.sourceforge.net/lists/listinfo/firebird-devel
