[#CORE-2233] Allow non-SYSDBA users to monitor not only their current attachment but other their attachments as well

Firebird Core

Allow non-SYSDBA users to monitor not only their current attachment but other their attachments as well

Created: 10/Dec/08 06:17 AM Updated: 26/Jan/09 08:17 AM

Component/s:

Engine

Affects Version/s:

2.1.0, 2.5 Alpha 1, 2.1.1

Fix Version/s:

2.1.2, 2.5 Beta 1

Time Tracking:

Not Specified

Issue Links:

Relate

This issue is related to:

~~QA-228~~ Test for CORE-2233

Planning Status:

Unspecified

Description

« Hide

By the original design, non-privileged database users are allowed to see only their own attachment information inside the monitoring tables. It has been requested to allow them to see other attachments authenticated using the same user name.

All

Comments

Work Log

Change History

Version Control

FishEye

Sort Order:

[ Permalink | « Hide ]

Claudio Valderrama C. added a comment - 10/Dec/08 06:34 AM

Not sure this is a good idea if there's middleware that logs in multiple times with the same user, but the end user is different.

[ Permalink | « Hide ]

Dmitry Yemanov added a comment - 10/Dec/08 06:47 AM

In the worst case (middleware works with SYSDBA or DBO permissions) this issue exists since v2.1.0. Maybe the middleware should not expose the monitoring features to the end user in this case?