Uploaded image for project: 'Ignite'
  1. Ignite
  2. IGNITE-11712

SQL: review security check for SQL/DML queries

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Open
    • Major
    • Resolution: Unresolved
    • None
    • None
    • security, sql
    • None

    Description

      Currently the security check (read/write permissions) is carried out during the query execution. It involves some extra actions (like a query registration) which can be avoided if the security check is conducted on the earlier stage of the query execution, for example right away after the parsing.

      For SELECT queries only read permission should be checked.

      For INSERT queries without SELECT only write permission should be checked.

      For  UPDATE queries or INSERT queries with SELECT both read and write permissions should be checked.

      Attachments

        Issue Links

          is blocked by

          Improvement - An improvement or enhancement to an existing feature or task. IGNITE-12759 Getting a SecurityContext from GridSecurityProcessor

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              Unassigned Unassigned
              rkondakov Roman Kondakov
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated: