-
-
Notifications
You must be signed in to change notification settings - Fork 212
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Allow non-SYSDBA users to monitor not only their current attachment but other their attachments as well [CORE2233] #2660
Comments
Modified by: @dyemanovassignee: Dmitry Yemanov [ dimitr ] |
Modified by: @dyemanovstatus: Open [ 1 ] => In Progress [ 3 ] |
Commented by: Claudio Valderrama C. (robocop) Not sure this is a good idea if there's middleware that logs in multiple times with the same user, but the end user is different. |
Commented by: @dyemanov In the worst case (middleware works with SYSDBA or DBO permissions) this issue exists since v2.1.0. Maybe the middleware should not expose the monitoring features to the end user in this case? |
Modified by: @dyemanovstatus: In Progress [ 3 ] => Open [ 1 ] |
Modified by: @pmakowskistatus: Resolved [ 5 ] => Closed [ 6 ] |
Modified by: @pavel-zotovstatus: Closed [ 6 ] => Closed [ 6 ] QA Status: Done successfully Test Details: Implemented using test_type = 'ISQL'. |
Hello One question I am trying to monitor the status of the database through the monitoring tables, exposing the results in a web service. However, when I execute the query with the required information, it shows me a limited number of records depending on the user I am using. SELECT Is there any way that a common user can have access to all the information in those tables. The version of firebird used is: 2.5.9 |
@PJosue100 that's wrong place to ask support questions, please use firebird-support@googlegroups.com instead. |
@AlexPeshkoff I understand, thanks for the information. |
Submitted by: @dyemanov
Is related to QA228
By the original design, non-privileged database users are allowed to see only their own attachment information inside the monitoring tables. It has been requested to allow them to see other attachments authenticated using the same user name.
Commits: ca0df9c 25dc79d
====== Test Details ======
Implemented using test_type = 'ISQL'.
Main idea: run execute statement on EXTERNAL datasource and specify every time
different ROLE (no matter is that role exists or no - new connection always will be
etsblished and will be provided with new attachment_id in mon$attachments).
The text was updated successfully, but these errors were encountered: