| Subject | Re: Embedded users and roles |
|---|---|
| Author | rajsubramani |
| Post date | 2004-04-12T07:32:59Z |
Thanks for the reply.
I have created a role called ADMIN_ROLE.
SYSDBA (who is DB owner) does not seem to be affected by ADMIN_ROLE
(the gdb file was created using a client-server edition).
I can connect as user "foobar". But "foobar" is prevented from reading
tables because of permission problems.
Even if I state: GRANT ADMIN_ROLE TO foobar
it has no effect.
Thats why I could not see the point in roles for the embedded version!
Cheers
-raj
I have created a role called ADMIN_ROLE.
SYSDBA (who is DB owner) does not seem to be affected by ADMIN_ROLE
(the gdb file was created using a client-server edition).
I can connect as user "foobar". But "foobar" is prevented from reading
tables because of permission problems.
Even if I state: GRANT ADMIN_ROLE TO foobar
it has no effect.
Thats why I could not see the point in roles for the embedded version!
Cheers
-raj
> No, embedded bypasses server security. You can use any user name tolog in
> to the embedded server, even one that doesn't exist.only way
>
>
> >But it seems to implements roles.
>
> Roles are database-based.
>
>
> >If I cannot create a user and grant the user the role created what it
> >the point of implementing user_roles in embedded mode?
>
> Because roles are related to permissions and permissions are the
> you can impose any sort of security.