You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@ignite.apache.org by "Roman Kondakov (JIRA)" <ji...@apache.org> on 2019/04/10 07:34:00 UTC

[jira] [Created] (IGNITE-11712) SQL: review security check for SQL/DML queries

Roman Kondakov created IGNITE-11712:
---------------------------------------

             Summary: SQL: review security check for SQL/DML queries
                 Key: IGNITE-11712
                 URL: https://issues.apache.org/jira/browse/IGNITE-11712
             Project: Ignite
          Issue Type: Improvement
          Components: sql
            Reporter: Roman Kondakov


Currently the security check (read/write permissions) is carried out during the query execution. It involves some extra actions (like a query registration) which can be avoided if the security check is conducted on the earlier stage of the query execution, for example right away after the parsing.

For SELECT queries only read permission should be checked.

For INSERT queries without SELECT only write permission should be checked.

For  UPDATE queries or INSERT queries with SELECT both read and write permissions should be checked.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)