New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Implicitly active roles (and their permissions summarized) [CORE751] #1125
Comments
Commented by: Alice F. Bird (firebirds) Date: 2004-10-22 00:43 I know an easy way of doing "Groups of grants" in Firebird. -- One way is adding RDB$GROUPS table like RDB$ROLES. CREATE TABLE RDB$GROUPS ( And then replacing RDB$SECURITY_CLASSES by one View instead of table. This view catches all data from RDB$RELATION_FIELDS and *automatically adds grants (from the groups) (thought one select, union (whatever). I belive. It's not so hard doing. As you can see. So, I'd like to implement it. But I am not sure about changing RDB$ tables. And how we can add it to the default firebird distro. |
Commented by: Alice F. Bird (firebirds) Date: 2004-07-29 21:58 I'd like to have Firebird behaving this way: - accepting multiple roles at the same time. Is the same thing you want? If yes, how can we implement it? |
Modified by: @dyemanovComponent: Security [ 10071 ] assignee: Alexander Peshkov [ alexpeshkoff ] SF_ID: 807938 => |
Modified by: @pcisarWorkflow: jira [ 10775 ] => Firebird [ 15148 ] |
Commented by: Jacques (zerocool) where can i find a step by step guide to implment the above. I am looking into building a security model, and from there, granting roles to users, which the users can use to see data as needed. |
Commented by: @AlexPeshkoff If you need "granting roles to users, which the users can use to see data as needed" this already works in firebird. Noone will write you step by step guide - it's easier to write required program, but even to provide generic advice what to start with I need to get full understanding what you really need. |
Modified by: Sean Leyne (seanleyne)description: SFID: 807938# Database rights can be assigned to Groups. Groups can => SFID: 807938# Database rights can be assigned to Groups. Groups can be assigned to users. The resulting user database rights are the combination of the group rights as well as user rights. All this must work without roles. |
Modified by: @dyemanovFix Version: 4.0 Beta 1 [ 10750 ] |
Commented by: @romansimakov Recently implemented ability to grant a role to another role (CORE1815) covers this feature in case of using DEFAULT ROLE. I guess this ticket can be closed. |
Modified by: @dyemanovassignee: Alexander Peshkov [ alexpeshkoff ] => Roman Simakov [ roman-simakov ] status: Open [ 1 ] => Resolved [ 5 ] resolution: Fixed [ 1 ] |
Modified by: @dyemanovsummary: Groups of users and rights => Implicitly active roles (and their permissions summarized) |
Commented by: @sim1984 Please add a description of the system functions RDB$ROLE_IN_USE in README.cumulative_roles.txt file. |
Commented by: @romansimakov |
Modified by: @pavel-zotovstatus: Resolved [ 5 ] => Resolved [ 5 ] QA Status: Covered by another test(s) Test Details: See test for CORE1815 |
Modified by: @pavel-zotovstatus: Resolved [ 5 ] => Closed [ 6 ] |
Submitted by: @pcisar
Is duplicated by CORE2610
Is replaced by CORE1815
Votes: 13
SFID: 807938#
Submitted By: pcisar
Database rights can be assigned to Groups. Groups can be assigned to users. The resulting user database rights are the combination of the group rights as well as user rights. All this must work without roles.
====== Test Details ======
See test for CORE1815
The text was updated successfully, but these errors were encountered: