| Subject | Re: [IBO] Surfacing Interbase UID and GID in AlterUser |
|---|---|
| Author | Jason Wharton |
| Post date | 2002-06-12T01:21:13Z |
I don't believe in using those functions in an end-user application because
it forces you to have SYSDBA rights somehow embedded in your executable.
I prefer to have a service app that watches a table in the database a user
does have permissions to modify and then the service app performs the
operations necessary to carry out those options. By running as a service
app, it is on the same secured machine as the database server is. It can
have the SYSDBA password embedded in it with much less concern. The end user
can only change data in the table so things are secure.
HTH,
Jason Wharton
CPS - Mesa AZ
http://www.ibobjects.com
it forces you to have SYSDBA rights somehow embedded in your executable.
I prefer to have a service app that watches a table in the database a user
does have permissions to modify and then the service app performs the
operations necessary to carry out those options. By running as a service
app, it is on the same secured machine as the database server is. It can
have the SYSDBA password embedded in it with much less concern. The end user
can only change data in the table so things are secure.
HTH,
Jason Wharton
CPS - Mesa AZ
http://www.ibobjects.com
----- Original Message -----
From: "stevefields37075" <fields24@...>
To: <IBObjects@yahoogroups.com>
Sent: Monday, June 10, 2002 7:03 PM
Subject: [IBO] Surfacing Interbase UID and GID in AlterUser
> Jason (or whoever can help),
>
> How can I go about surfacing the UserID and GroupID fields
> in your AlterUser function on TIB_Connection?
> I have played around with adding it on to the sections in
> IB_Session and IBA_Session but was unable to get it to run
> without getting an error in IBA_Connection.IMP. (I do not
> really want to have to access the ISC4 database in such a
> wide open manner)
>
> I am working on a app to be able to add and change users into
> databases while still using your DML routines. I know that I can
> access the isc4.gdb database directly but cannot get it to update
> records due to the fact that there are no Primary keys in the
> Users table in Interbase. I have played with creating a seperate
> database that would hold particular access rights to apps for given
> users but it still requires access to the User info in isc4 due
> to DML requirements.
>
> At present I have a database with user info, id number, application
> name, roles _available_ for the given apps, etc. (Using an approach
> of having all my users in this database, _linking_ them to the roles
> and users in a given database, makes the DML synchronizing useless
> if I have several simultaneous users that _map_ out to the same IB
> user record)
>
> Any hint would be appreciated.
>
> TIA
> Steve Fields