You are viewing a plain text version of this content. The canonical link for it is here.
Posted to derby-dev@db.apache.org by "Dag H. Wanvik (JIRA)" <ji...@apache.org> on 2008/04/12 01:31:04 UTC
[jira] Commented: (DERBY-3223) SQL roles: make use of privileges
granted to roles in actual privilege checking
[ https://issues.apache.org/jira/browse/DERBY-3223?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12588169#action_12588169 ]
Dag H. Wanvik commented on DERBY-3223:
--------------------------------------
Thanks for looking at the patch, Rick!
First observation: yes, the current role is presently not reset (if it has been revoked) until you try to use it for something, except for the use in current_role, but I agree this is confusing and I have decided to change it so that current_role will behave as you expect, but I didn't get there yet.
Second observation: You are right, the circularity check is missing still. Sorry, I forgot to mention it.
I will fix issues both in the next revision.
> SQL roles: make use of privileges granted to roles in actual privilege checking
> -------------------------------------------------------------------------------
>
> Key: DERBY-3223
> URL: https://issues.apache.org/jira/browse/DERBY-3223
> Project: Derby
> Issue Type: New Feature
> Components: Security, SQL
> Reporter: Dag H. Wanvik
> Assignee: Dag H. Wanvik
> Fix For: 10.5.0.0
>
> Attachments: derby-3223-1a.diff, derby-3223-1a.stat, roles.sql, roles2.sql
>
>
> Pushing out to 10.5
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.