> Hello,
>
> thank you for the answer. That's what i was afraid of....
> So every permission editor in every firebird admin tool will work
> only for sysdba?
>
> That's not a good solution.
> Is there any other idea?

no - not with fb2's new security model, unless you make the mods to
security2.fdb and distribute the modified version of it.
That's what I do.
OR
in the admin tool of choice, you register 2 servers, one as creator and one
as SYSDBA, use the owner registered server to do your dev work, and the
SYSDBA registered server to do the permissions.

if you use roles, then role admin is carried out without seeing WHO
(specific users) on the server. You can grant roles to users also without
seeing them, with a grant statement.
but yes, the full use of gui grant managers to individual users is not going
to work with the standard install unless you are SYSDBA.

Alan

>
>
> am Dienstag, 9. Oktober 2007 um 11:58 schrieben Sie:
>
> >> Can I get a list of valid user names in fb 2 as no-sysdba user?
> >>
> >> I've an user, which is owner of a db but not sysdba. The question is
> >> how he can validate his grant statements.
> >>
> >> --
> >> Björn Reimer, Datenbanken und DV-Verfahren
> >>
>
> > not sure what you mean by validate his grant statements but for
> the owner to
> > see the list of users, you need to make some modifications to the
> > security2.fdb file. As distributed, the security database will
> only allow a
> > user to see himself.
>
> > GRANT SELECT ON USERS TO PUBLIC;
>
> > since the database is not accessible while the serer is online,
> you eed to
> > make copies, access it under another name, make the mods and
> then replace
> > the original.
>
>
> > Alan
>