You are viewing a plain text version of this content. The canonical link for it is here.
Posted to derby-dev@db.apache.org by "Kim Haase (JIRA)" <ji...@apache.org> on 2008/12/12 00:17:44 UTC

[jira] Updated: (DERBY-3193) SQL roles: Add documentation

     [ https://issues.apache.org/jira/browse/DERBY-3193?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Kim Haase updated DERBY-3193:
-----------------------------

    Attachment: DERBY-3193-2.zip
                DERBY-3193-2.stat
                DERBY-3193-2.diff

Attaching DERBY-3193-2.diff, DERBY-3193-2.stat, and DERBY-3193-2.zip, updated versions of the first patch that include changes to the Developer's Guide as well as a few tweaks to Reference Manual topics.

M      src/ref/crefsqlj35312.dita
A      src/ref/rrefcurrentrole.dita
A      src/ref/rrefcreaterole.dita
A      src/ref/rrefsetrole.dita
M      src/ref/rrefsqljrevoke.dita
M      src/ref/crefsqlj80721.dita
A      src/ref/rrefrolename.dita
M      src/ref/rrefsistabssystableperms.dita
A      src/ref/rrefsistabssysroles.dita
M      src/ref/rrefsyscsdiagtables.dita
M      src/ref/crefsqlj95081.dita
M      src/ref/rrefsistabssysroutineperms.dita
A      src/ref/rrefdroprole.dita
M      src/ref/rrefsistabssyscolperms.dita
M      src/ref/rrefsqlj30540.dita
M      src/ref/rrefsqlj31580.dita
M      src/ref/rrefsqljgrant.dita
M      src/ref/refderby.ditamap
M      src/devguide/cdevcsecure866060.dita
M      src/devguide/derbydev.ditamap
A      src/devguide/rdevcsecuresqlauthexceptions.dita
M      src/devguide/cdevcsecuregrantrevokeaccess.dita
M      src/devguide/cdevcsecure36595.dita
M      src/devguide/rdevcsecure379.dita
M      src/devguide/rdevcsecure190.dita
M      src/devguide/cdevcsecure865880.dita
A      src/devguide/cdevcsecureroles.dita
M      src/tools/rtoolsijcomrefshow.dita

I reorganized the Developer's Guide section as follows:

User authorizations
  Setting the default connection access mode
  Setting access for individual users
    Read-only and full access permissions
    User authorization exceptions
  Setting the SQL standard authorization mode
    Using SQL standard authorization
    Using SQL roles (new topic)
    SQL standard authorization exceptions (new topic)

Reordered bullet list in "User authorizations" (cdevcsecure36595.dita) to reflect this order.

Retitled "Setting the user authorizations for individual users" (cdevcsecure865880.dita) to "Setting access for individual users".

Retitled "SQL standard authorization" (cdevcsecuregrantrevokeaccess.dita) to "Using SQL standard authorization".

Fixed a table in "Read-only and full access permissions" (rdevcsecure190.dita) so that empty cells don't have single quote marks in them in the PDF and HTML-single versions.

Removed language specific to SQL authorization from "User authorization exceptions" (rdevcsecure379.dita). 

Added new topics, cdevcsecureroles.dita and rdevcsecuresqlauthexceptions.dita.

Updated map file to reflect fixes (including reltable).

---

Additional fixes to the Reference Manual:

rrefsqljgrant.dita: only db owner can grant a role.

rrefsqljrevoke.dita: only db owner can revoke a role.

rrefsetrole.dita: setting role is not transactional; added examples.

rrefcreaterole.dita: just some typographical consistency fixes.

The Tools Guide topic is still lacking in content because I can't seem to get roles to work right with current Derby trunk libraries. I set SQLAuthorization, but then I always get an error when I try to set a role:

java -cp /home/chaase/derby10.5alpha/lib/derby.jar:. RoleExample
org.apache.derby.jdbc.EmbeddedDriver loaded.
Trying to connect to jdbc:derby:sqlAuthEmbDB;user=mary;create=true
Connected to database jdbc:derby:sqlAuthEmbDB;user=mary;create=true
Turning on authentication and SQL authorization.
Value of requireAuthentication is true
Value of sqlAuthorization is true
Value of defaultConnectionMode is noAccess

---SQLException Caught---

SQLState:   42Z60
Severity: 30000
Message:  CREATE ROLE not allowed unless database property derby.database.sqlAuthorization has value 'TRUE'.

Same thing happened when I tried setting the properties on the ij command line and then doing CREATE ROLE there.


> SQL roles: Add documentation
> ----------------------------
>
>                 Key: DERBY-3193
>                 URL: https://issues.apache.org/jira/browse/DERBY-3193
>             Project: Derby
>          Issue Type: Task
>          Components: Documentation
>            Reporter: Dag H. Wanvik
>            Assignee: Kim Haase
>             Fix For: 10.5.0.0
>
>         Attachments: DERBY-3193-2.diff, DERBY-3193-2.stat, DERBY-3193-2.zip, DERBY-3193.diff, DERBY-3193.stat, DERBY-3193.zip, derby3193-tmp.diff, derby3193-tmp.stat
>
>


-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.