Roles granting/revoking logic (differs between 2.0 and 2.1) [CORE1869] #2300
Submitted by: Konstantin Dombrugov (abracadabra)
There is a difference between role granting/revoking between 2.0.4 and 2.1.0 wich is currently undocumented.
//login as sysdba
<last command works ok (removes record from RDB$USER_PRIVILEGES wich grants role01 to user02 by user01) for 2.0 but fails in 2.1 persisting record in RDB$USER_PRIVILEGES with message
//and if in FB 2.1.0 sysdba execute
Please explain how it works or how it should realy work, because I cannot find description of such changes in release notes.
EPISODE TWO: admin option
Should it work like that?
The text was updated successfully, but these errors were encountered:
Commented by: @AlexPeshkoff
To solve this problem I had to add new clause to GRANT and REVOKE commands - GRANTED BY. Only using it it's possible to avoid conflicts with roles (and other rigths) assignment when performed by many users.