| Subject | SetUID stored procedures? |
|---|---|
| Author | vandy899 |
| Post date | 2005-01-27T01:33:40Z |
I was just thinking, for some of the tables that I've made, it would
be good if I could make it so that ordinary users could not SELECT *
(for instance) on it, nor INSERT INTO, but could use stored procedures
that *DO* do these things. I was thinking that this could be
implemented by marking those stored procedures as having been marked
SetUID by a particular user, and so they would run with the privs of
that user (similar to UNIX). I don't think this is possible on any
other platform, but I could be wrong. Is this possible on Firebird
right now? I couldn't see anything like that in the manual... (Mind,
not even PostgreSQL has it, and they seem to have *everything* under
the sun...) :)
Cheers,
Michael
be good if I could make it so that ordinary users could not SELECT *
(for instance) on it, nor INSERT INTO, but could use stored procedures
that *DO* do these things. I was thinking that this could be
implemented by marking those stored procedures as having been marked
SetUID by a particular user, and so they would run with the privs of
that user (similar to UNIX). I don't think this is possible on any
other platform, but I could be wrong. Is this possible on Firebird
right now? I couldn't see anything like that in the manual... (Mind,
not even PostgreSQL has it, and they seem to have *everything* under
the sun...) :)
Cheers,
Michael