Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

FB3: CREATE USER GRANT ADMIN ROLE does not work [CORE4468] #4788

Closed
firebird-issue-importer opened this issue Jun 20, 2014 · 5 comments
Closed

Comments

@firebird-issue-importer

Submitted by: Robert (rjm1102)

Using WI-T3.0.0.30809 Firebird 3.0 Alpha 2, CREATE USER GRANT ADMIN ROLE does not work (i.e. rdb$admin role is not assigned to user in the security database)

Test scenario:

1) Connect to regular database Test.fdb by user SYSDBA

2) CREATE USER Test PASSWORD 'masterkey' GRANT ADMIN ROLE
COMMIT

3) GRANT rdb$admin TO USER Test
COMMIT

4) Connect to regular database Test.fdb by user Test with role rdb$admin

5) CREATE USER Test2 PASSWORD 'masterkey'
COMMIT

=> SQL Message : -901 Unsuccessful execution caused by system error that does not preclude successful execution of subsequent statements

Also using fbsvcmg after step 2:

C:\Program Files\Firebird\Firebird_3_0>fbsvcmgr localhost:service_mgr user sysdba password masterkey action_display_user_adm
Login Full name uid gid adm
SYSDBA Sql Server Administrator 0 0 no
TEST 0 0 no <<< *** expected: yes

I've executed the same scenario with FB2.5, and here it works correctly.

Commits: 5f4d742 FirebirdSQL/fbt-repository@63d9581 FirebirdSQL/fbt-repository@6a79916

====== Test Details ======

About ability of user to remove his 'admin role' (but NOT 'rdb$admin' one) that was granted to him by SYSDBA in 'create user ... grant admin role' statement -- see letters to/from Alex starting 03-jun-2015 19:51.

@firebird-issue-importer
Copy link
Author

firebird-issue-importer commented Jun 20, 2014

Commented by: Robert (rjm1102)

complete error message:
SQL Message : -901
Unsuccessful execution caused by system error that does not preclude successful execution of subsequent statements

Engine Code : 336723987
Engine Message :
add record error
no permission for INSERT access to TABLE PLG$SRP_VIEW

@firebird-issue-importer
Copy link
Author

firebird-issue-importer commented Jun 20, 2014

Modified by: @AlexPeshkoff

assignee: Alexander Peshkov [ alexpeshkoff ]

@firebird-issue-importer
Copy link
Author

firebird-issue-importer commented Jun 27, 2014

Modified by: @AlexPeshkoff

status: Open [ 1 ] => Resolved [ 5 ]

resolution: Fixed [ 1 ]

Fix Version: 3.0 Beta 1 [ 10332 ]

@firebird-issue-importer
Copy link
Author

firebird-issue-importer commented Jun 3, 2015

Modified by: @pavel-zotov

status: Resolved [ 5 ] => Resolved [ 5 ]

QA Status: Done successfully

Test Details: About ability of user to remove his 'admin role' (but NOT 'rdb$admin' one) that was granted to him by SYSDBA in 'create user ... grant admin role' statement -- see letters to/from Alex starting 03-jun-2015 19:51.

@firebird-issue-importer
Copy link
Author

firebird-issue-importer commented Jun 3, 2015

Modified by: @pavel-zotov

status: Resolved [ 5 ] => Closed [ 6 ]

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

2 participants