Provide ability to manage users from security.db when connected to read-only (user)-DB --------------------------------------------------------------------------------------
Key: CORE-6152 URL: http://tracker.firebirdsql.org/browse/CORE-6152 Project: Firebird Core Issue Type: Improvement Components: Security Reporter: Pavel Zotov Priority: Minor Connect as SYSDBA to any read-only database. Then: SQL> set list on; SQL> select mon$read_only from mon$database; MON$READ_ONLY 1 SQL> select * from sec$users; SEC$USER_NAME SYSDBA . . . SEC$PLUGIN Legacy_UserManager SEC$USER_NAME SYSDBA . . . SEC$PLUGIN Srp SQL> drop user sysdba using plugin Srp; Statement failed, SQLSTATE = 42000 Dynamic SQL Error -attempted update on read-only database SQL> drop user foo using plugin Srp; Statement failed, SQLSTATE = 42000 Dynamic SQL Error -attempted update on read-only database It will be useful to have ability create/alter/drop users by granting this priviledge to some user (for example, from HR department), but without giving to him any other rights. Ideally he must be able only to establish connect to some read-only DB. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://tracker.firebirdsql.org/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira Firebird-Devel mailing list, web interface at https://lists.sourceforge.net/lists/listinfo/firebird-devel