Easily find issues by searching: #<Issue ID>
Example: #1832
Easily find members by searching in: <username>, <first name> and <last name>.
Example: Search smith, will return results smith and adamsmith
New object permissions offered by 13.0 are:
. Create/Drop GLOP (objects: database)
. GLOP Member (objects: database)
. Create Owner Procedure (objects: not sure at the moment)
. Show (objects: database, table)
. Statistics (objects: database, table)
. Connect Through Control (objects: user only)
See 13.0 document, 1149.pdf (SQL Data Control Language), page 50 for more information.
|
|
50 KB
Implementation of Create Owner Procedure, Show and Statistics permissions at database level is done for user and role.
--- svn log ---
Sending src-rep\src\lib\aqua-core\com\aquafold\aquacore\security\AFCoreSecurityUtil.java
Sending src-rep\src\lib\aqua-core\com\aquafold\aquacore\security\extract\ExtractSystemPermission.java
Transmitting file data ..
Committed revision 19499.
Table - grant/revoke SHOW/STATISTICS on Table to/from User/Role.
View - grant/revoke SHOW on View to/from User/Role.
--- svn log ---
Sending src-rep\src\apps\datastudio\com\aquafold\datastudio\visualedit\security\ObjectPermission.java
Sending src-rep\src\apps\datastudio\com\aquafold\datastudio\visualedit\security\teradata\TDGranteePermissionPanel.java
Sending src-rep\src\apps\datastudio\com\aquafold\datastudio\visualedit\security\teradata\TDObjectPermissionDialog.java
Adding src-rep\src\apps\datastudio\com\aquafold\datastudio\visualedit\security\teradata\permission\TDTablePermission_13.java
Adding src-rep\src\apps\datastudio\com\aquafold\datastudio\visualedit\security\teradata\permission\TDViewPermission_13.java
Sending src-rep\src\lib\aqua-core\com\aquafold\aquacore\security\AFCoreSecurityUtil.java
Sending src-rep\src\lib\aqua-core\com\aquafold\aquacore\security\AFObjectPermission.java
Transmitting file data .......
Committed revision 19507.
Table - grant/revoke SHOW/STATISTICS on Table to/from User/Role.
View - grant/revoke SHOW on View to/from User/Role.
--- svn log ---
Sending src-rep\src\apps\datastudio\com\aquafold\datastudio\visualedit\security\ObjectPermission.java
Sending src-rep\src\apps\datastudio\com\aquafold\datastudio\visualedit\security\teradata\TDGranteePermissionPanel.java
Sending src-rep\src\apps\datastudio\com\aquafold\datastudio\visualedit\security\teradata\TDObjectPermissionDialog.java
Adding src-rep\src\apps\datastudio\com\aquafold\datastudio\visualedit\security\teradata\permission\TDTablePermission_13.java
Adding src-rep\src\apps\datastudio\com\aquafold\datastudio\visualedit\security\teradata\permission\TDViewPermission_13.java
Sending src-rep\src\lib\aqua-core\com\aquafold\aquacore\security\AFCoreSecurityUtil.java
Sending src-rep\src\lib\aqua-core\com\aquafold\aquacore\security\AFObjectPermission.java
Transmitting file data .......
Committed revision 19507.
*** Create Owner Procedure permission ***
The 'Create Owner Procedure' permission can only be applied to a database object (done on 3/1/11), but not a procedure object. See below for details.
I was not able to create a stored procedure on server 10.168.11.58 (Teradata 13.0) using the following statement:
CREATE PROCEDURE fcy_proc_sql_0 ()
BEGIN
END;
GO
Got the following error:
[Teradata Database] [TeraJDBC 13.00.00.06] [Error 5862] [SQLState HY000] C/C++ compiler is not installed.
Since I could not create my own stored procedure, I tested 'Create Owner Procedure' permission using the GETCHILDREN stored procedure defined in the manufacturing database:
(1) GRANT ALTER PROCEDURE ON manufacturing.GETCHILDREN TO fcy_test_user_1
GO
This works fine.
(2) GRANT CREATE OWNER PROCEDURE ON manufacturing.GETCHILDREN TO fcy_test_user_1
GO
This returns the following error:
[Teradata Database] [TeraJDBC 13.00.00.06] [Error 5493] [SQLState HY000] The privilege is not applicable to a stored procedure.
*** Connect Through Control (CTCONTROL) permission ****
The CTCONTROL permission involves two users which does not seem to fit the model of ADS User Dialog well. Below are a couple of examples:
GRANT CTCONTROL ON user_1 TO user_2;
REVOKE CTCONTROL ON user_1 FROM user_2;
I discussed this with Niels, we currently will not support this permission.
*** Create/Drop GLOP and GLOP Member permissions ***
These 3 permissions have something to do with User Defined Function and seem to be complicated to use/test. Please see "Example 18: Granting GLOP Privileges" on page 81 of 1149.pdf (SQL Data Control Language) for more information. I discussed this with Niels, we will not support these permissions at the moment.
*** Create Owner Procedure permission ***
The 'Create Owner Procedure' permission can only be applied to a database object (done on 3/1/11), but not a procedure object. See below for details.
I was not able to create a stored procedure on server 10.168.11.58 (Teradata 13.0) using the following statement:
CREATE PROCEDURE fcy_proc_sql_0 ()
BEGIN
END;
GO
Got the following error:
[Teradata Database] [TeraJDBC 13.00.00.06] [Error 5862] [SQLState HY000] C/C++ compiler is not installed.
Since I could not create my own stored procedure, I tested 'Create Owner Procedure' permission using the GETCHILDREN stored procedure defined in the manufacturing database:
(1) GRANT ALTER PROCEDURE ON manufacturing.GETCHILDREN TO fcy_test_user_1
GO
This works fine.
(2) GRANT CREATE OWNER PROCEDURE ON manufacturing.GETCHILDREN TO fcy_test_user_1
GO
This returns the following error:
[Teradata Database] [TeraJDBC 13.00.00.06] [Error 5493] [SQLState HY000] The privilege is not applicable to a stored procedure.
*** Connect Through Control (CTCONTROL) permission ****
The CTCONTROL permission involves two users which does not seem to fit the model of ADS User Dialog well. Below are a couple of examples:
GRANT CTCONTROL ON user_1 TO user_2;
REVOKE CTCONTROL ON user_1 FROM user_2;
I discussed this with Niels, we currently will not support this permission.
*** Create/Drop GLOP and GLOP Member permissions ***
These 3 permissions have something to do with User Defined Function and seem to be complicated to use/test. Please see "Example 18: Granting GLOP Privileges" on page 81 of 1149.pdf (SQL Data Control Language) for more information. I discussed this with Niels, we will not support these permissions at the moment.
testing the things you said where working and they are working...
will file a bug against myself to install the c/c++ compiler on the machine running teradata 13
testing the things you said where working and they are working...
will file a bug against myself to install the c/c++ compiler on the machine running teradata 13
Some examples ...
GRANT SHOW, STATISTICS ON fcy_test_user_2.fcy_tar_1 TO Crashdumps
GO
Some examples ...
GRANT SHOW, STATISTICS ON fcy_test_user_2.fcy_tar_1 TO Crashdumps
GO
Issue #5314 |
| Closed |
| Fixed |
| Resolved |
Completion |
| No due date |
| No fixed build |
| No time estimate |
Implementation of Create Owner Procedure, Show and Statistics permissions at database level is done for user and role.
--- svn log ---
Sending src-rep\src\lib\aqua-core\com\aquafold\aquacore\security\AFCoreSecurityUtil.java
Sending src-rep\src\lib\aqua-core\com\aquafold\aquacore\security\extract\ExtractSystemPermission.java
Transmitting file data ..
Committed revision 19499.