| Summary: | Teiid server resolves incorrectly SQL query on VDB with data roles with various permissions | ||
|---|---|---|---|
| Product: | [JBoss] JBoss Data Virtualization 6 | Reporter: | Lucie Fabrikova <lfabriko> |
| Component: | Tooling | Assignee: | Van Halbert <vhalbert> |
| Status: | CLOSED NOTABUG | QA Contact: | |
| Severity: | unspecified | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 6.0.0 | CC: | atangrin, vhalbert |
| Target Milestone: | --- | ||
| Target Release: | --- | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2013-08-30 18:55:46 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
Yes, I did, but the result was same. (I am not sure, but shouldn't be re-deploy of the VDB sufficient?) I see, I was mistaken. It is not a bug. |
Description of problem: Teiid server resolves incorrectly SQL query on VDB with data roles with various permissions Version-Release number of selected component (if applicable): How reproducible: Steps to Reproduce: 1. Create new teiid user in teiid-security-users.properties ("user1"), add add him a role in teiid-security-roles.properties ("limited") 2. In teiid designer, create VDB, add a data role mapped to role "limited". Alter e.g. read permissions to one table in VDB. 3. Create teiid connection profile for default teiid user ("user"). Deploy VDB, execute any query. Actual results: User with all permissions cannot access some of tables in VDB. [1] Expected results: Additional info: [1] 15:38:49,059 WARN [org.teiid.PROCESSOR] (Worker3_QueryProcessorQueue10) TEIID30020 Processing exception for request FO76bwVFYmEy.0 'TEIID30492 User <user@teiid-security> is not entitled to action <READ> for 1 or more of the groups/elements/procedures.'. Originally QueryValidatorException Request.java:305. Enable more detailed logging to see the entire stacktrace.