| Subject | RE: [ib-support] RDB$USER_PRIVILEGES Question |
|---|---|
| Author | Helen Borrie |
| Post date | 2003-04-04T10:57:39Z |
At 07:11 PM 4/04/2003 +1000, you wrote:
one another. (1) The authentication takes place by querying the security
database. (2) When that's OK, then the connection is allowed to the other
database. It's not a single transaction across ALL databases on the
server, which is what would be required to "cascade" a user deletion to all
privileges in all databases...
heLen
> >revoke all ON DESKTOPUSER FROM "01CLARKKENT"..then DESKTOPUSER is a role, I take it...
> >does not raise an error??
>
>What error do you expect?
>
>I suppose the same kind of error that arises when I try to issue a select
>statement where the syntax is clearly wrong, as in this statement.
>
>It should be
>revoke DESKTOPUSER from "01CLARKKENT"
>Well somehwere along the line, a multi database query takes place when youAh, but this is two databases, separate operations in each, unconnected to
>log on - first the authentication takes place against the security database,
>then the real database. So multi database actions aren't totally outside the
>scope.
one another. (1) The authentication takes place by querying the security
database. (2) When that's OK, then the connection is allowed to the other
database. It's not a single transaction across ALL databases on the
server, which is what would be required to "cascade" a user deletion to all
privileges in all databases...
heLen