| Subject | RE: [firebird-support] How to restrict a user from creating a database or adding tables? |
|---|---|
| Author | Svein Erling Tysvær |
| Post date | 2009-01-29T07:56:48Z |
As Helen said, preventing a user from creating a database is simple, whereas preventing a user from creating a table within a database is impossible unless it is a static database that you can set to read only.
At my workspace, the majority of users only need access to data through programs that we've written. Hence, we use a small routine (in Delphi and used on the client, not Firebird or the server) that encodes and decodes their password and the users themselves generally have no clue what their real password is. I don't think our 'password encryptor' routine is all that complex, the main point is that people are not able to figure out their real password. Those of us that actually need direct access to the database (mostly developers), well, we could fill up the hard disk if we wanted to.
So, if you want to allow people to have direct access to write SELECT statements themselves in the program of their choice, but prevent CREATE TABLE and then INSERT statements, then I guess you're out of luck.
Sorry Phil,
Set
-----Original Message-----
From: firebird-support@yahoogroups.com [mailto:firebird-support@yahoogroups.com] On Behalf Of Phil Couling
Sent: 29. januar 2009 01:04
To: firebird-support@yahoogroups.com
Subject: [firebird-support] How to restrict a user from creating a database or adding tables?
Hi
I'd like to restrict the access of some users to only a very small set
of operations.(namely selecting from a handful of procedures).
When I create a user using the gsec tool, the new user is given enough
access to both create a new database and create tables within existing
databases. While this could not be used to do anything other than fill
up my hard drive, it's something that I'd like to restrict a user from
doing.
However after spending hours on google I'm still no closer to my goal.
Any suggestions?
Thanks
At my workspace, the majority of users only need access to data through programs that we've written. Hence, we use a small routine (in Delphi and used on the client, not Firebird or the server) that encodes and decodes their password and the users themselves generally have no clue what their real password is. I don't think our 'password encryptor' routine is all that complex, the main point is that people are not able to figure out their real password. Those of us that actually need direct access to the database (mostly developers), well, we could fill up the hard disk if we wanted to.
So, if you want to allow people to have direct access to write SELECT statements themselves in the program of their choice, but prevent CREATE TABLE and then INSERT statements, then I guess you're out of luck.
Sorry Phil,
Set
-----Original Message-----
From: firebird-support@yahoogroups.com [mailto:firebird-support@yahoogroups.com] On Behalf Of Phil Couling
Sent: 29. januar 2009 01:04
To: firebird-support@yahoogroups.com
Subject: [firebird-support] How to restrict a user from creating a database or adding tables?
Hi
I'd like to restrict the access of some users to only a very small set
of operations.(namely selecting from a handful of procedures).
When I create a user using the gsec tool, the new user is given enough
access to both create a new database and create tables within existing
databases. While this could not be used to do anything other than fill
up my hard drive, it's something that I'd like to restrict a user from
doing.
However after spending hours on google I'm still no closer to my goal.
Any suggestions?
Thanks