780578 – (SOA-3015) Requesting row level security for Data Services authorizations on system and udf functions.

Bug 780578 (SOA-3015) - Requesting row level security for Data Services authorizations on system and udf functions.

Summary: Requesting row level security for Data Services authorizations on system and ...

Keywords:
Status:	CLOSED NEXTRELEASE
Alias:	SOA-3015
Product:	JBoss Enterprise SOA Platform 5
Classification:	JBoss
Component:	Security, EDS
Sub Component:
Version:	5.1.0 GA
Hardware:	Unspecified
OS:	Unspecified
Priority:	high
Severity:	high
Target Milestone:	---
Target Release:	5.2.0 ER1
Assignee:	Van Halbert
QA Contact:
Docs Contact:
URL:	http://jira.jboss.org/jira/browse/SOA...
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2011-04-07 14:58 UTC by dsteigne
Modified:	2011-10-26 18:00 UTC (History)
CC List:	0 users
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2011-10-26 18:00:08 UTC
Type:	Feature Request

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	SOA-3015	0	None	None	None	Never
Red Hat Issue Tracker	TEIID-1550	0	None	None	None	Never

Description dsteigne 2011-04-07 14:58:23 UTC

Help Desk Ticket Reference: https://c.na7.visual.force.com/apex/Case_View?id=500A0000006n58t
project_key: SOA

Requesting Row level security model to restrict user access to sensitive information defining new Security Domain in SOA Platform configured to use XACML authorization. Specification of Business Rules that will restrict access to data at a row level based on User Profile attributes like cost center, roles, portfolio.
Currently this is not available for system or User Defined Functions, just tables.  Requesting that this capability be added.

Comment 1 Steven Hawkins 2011-04-07 15:20:13 UTC

Link: Added: This issue Cloned to SOA-3016

Comment 3 David Le Sage 2011-08-31 05:47:35 UTC

Release Notes Docs Status: Added: Documented as Resolved Issue
Writer: Added: dlesage
Release Notes Text: Added: https://issues.jboss.org/browse/SOA-3015

A row-level security model to restrict user access to sensitive information has been added.  Previously, this was not available for system- or user-defined functions, just for tables. The system is available when the SOA Platform is configured to use XACML authorisation.

Comment 4 Paul Nittel 2011-10-26 18:00:08 UTC

Verified UDFs are eligible for control by data roles. Closed.

Note You need to log in before you can comment on or make changes to this bug.