ui: gate all statement bundle operations under VIEWACTIVITY
#121301
Labels
C-bug
Code not up to spec/doc, specs & docs deemed correct. Solution expected to change code/behavior.
T-observability
Currently, requesting, viewing (downloading), and deleting statement bundle requests from DB console are all gated under different permissions:
VIEWACTIVITY
system privilege (this privilege is widely used across DB console features)VIEWSYSTEMTABLE
privilegeAll of the above operations should be allowed with
VIEWACTIVITY
. One option is to create aVIEWACTIVITY
gated view on top of the statement bundle table and an equivalent builtin to perform deletes. The alternative is to revert to using the grpc endpoints for statement bundles (this is likely preferred over creating new views and builtins).This is technically a regression - prior to 23.1 we used the GRPC endpoint to perform stmt bundle operations from db-console, which only required
VIEWACTIVITY
. For 23.1+ we switched to use sql-over-http, which used incorrectly gated sql queries/functions (referenced above).Jira issue: CRDB-37176
The text was updated successfully, but these errors were encountered: