You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@trafodion.apache.org by "Gao, Rui-Xian (JIRA)" <ji...@apache.org> on 2016/09/01 15:51:21 UTC

[jira] [Created] (TRAFODION-2203) a user can grant privileges that he doesn’t have to other users/roles successfully

Gao, Rui-Xian created TRAFODION-2203:
----------------------------------------

             Summary:  a user can grant privileges that he doesn’t have to other users/roles successfully
                 Key: TRAFODION-2203
                 URL: https://issues.apache.org/jira/browse/TRAFODION-2203
             Project: Apache Trafodion
          Issue Type: Bug
          Components: sql-security
         Environment: Centos6.7
EsgynDB R2.2 0825daily
            Reporter: Gao, Rui-Xian
            Assignee: Roberta Marton


a  user can grant privileges that he doesn’t have to other users/roles successfully.

To reproduce --

root user --
create role role1;
create schema mysch;
set schema mysch;
create table tab1(a int, b int)no partition;
grant insert on tab1 to testuser1 with grant option;

connect as testuser1 --
set schema mysch;
SQL>grant select on tab1 to role1;

*** ERROR[1012] No privileges were granted.  You lack grant option on the specified privileges. [2016-09-01 15:31:33] //Rachel: this is expected

SQL>grant insert ,select on tab1 to role1;

--- SQL operation complete.   // should return error, testuser1 doesn’t have select privilege on tab1




--
This message was sent by Atlassian JIRA
(v6.3.4#6332)