472,809 Members | 4,947 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

home > topics > db2 database > questions > group privileges and views

Join Bytes to post your question to a community of 472,809 software developers and data experts.

Group privileges and views

Hello,

Quoting http://publib.boulder.ibm.com/infoce...uw/v9r5/topic/
com.ibm.db2.luw.sql.ref.doc/doc/r0000935.html :

Group privileges are not considered for any table or
view specified in the CREATE VIEW statement.

I discovered this today because a user complained that she couldn't
create a simple view referring to a table to which she had all privileges.

Why does DB2 care if the user or the group has the required SELECT
privilege on the base table?

(Managing access on a per-user basis is really a problem for us, we need
to be able to do it by groups. Otherwise the DBA needs to be involved in
too many tasks, instead of having the help desk handle it through central
group membership administration.)

--
Regards,
Troels Arvin <tr****@arvin.dk>
http://troels.arvin.dk/
Jun 27 '08 #1
1 1596
Troels Arvin wrote:
Hello,

Quoting http://publib.boulder.ibm.com/infoce...uw/v9r5/topic/
com.ibm.db2.luw.sql.ref.doc/doc/r0000935.html :

Group privileges are not considered for any table or
view specified in the CREATE VIEW statement.

I discovered this today because a user complained that she couldn't
create a simple view referring to a table to which she had all privileges.

Why does DB2 care if the user or the group has the required SELECT
privilege on the base table?

(Managing access on a per-user basis is really a problem for us, we need
to be able to do it by groups. Otherwise the DBA needs to be involved in
too many tasks, instead of having the help desk handle it through central
group membership administration.)
The problem is that DB2 is not informed when the definer gets ejected
from an OS GROUP.
DB2 9.5 supports ROLES however. Role membership is managed within DB2
and therefore ROLE membership is considered.

Cheers
Serge
--
Serge Rielau
DB2 Solutions Development
IBM Toronto Lab
Jun 27 '08 #2
New Post

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

2
Granting the privileges of existing objects within a schema to a new role
by: Ted | last post by:
How do I grant all privileges for a schema that has a large number of existing tables, procedures, functions, etc to a newly created role, without having to issue a grant statement for each object...
Oracle Database
0
Howto handle views/Rules Privileges
by: Ulrich Meis | last post by:
Hi! Situation two schemas: webviews: Contains a set of views with insert rules on them, accessed via a GUI. devconf: "Business logic", all the tables, functions, triggers that I want to...
PostgreSQL Database
14
Privileges in DB2 v 8.1.9 linux
by: Bob Stearns | last post by:
I just created a new user and granted connect and select on a single view, only. When I connect to my database, the new user has at least select privileges on the whole database. What am I doing...
DB2 Database
1
Granting the privileges of existing objects within a schema to a new role
by: Ted | last post by:
How do I grant all privileges for a schema that has a large number of existing tables, procedures, functions, etc to a newly created role, without having to issue a grant statement for each object...
Oracle Database
2
isladogs
Access Europe meeting on Wed 2 August - An Access Developer Guide to creating applications in Blazor
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 2 August 2023 starting at 18:00 UK time (6PM UTC+1) and finishing at about 19:15 (7.15PM) The start time is equivalent to 19:00 (7PM) in Central...
Microsoft Access / VBA
0
How to Use CodiumAI's pr-agent?
by: erikbower65 | last post by:
Using CodiumAI's pr-agent is simple and powerful. Follow these steps: 1. Install CodiumAI CLI: Ensure Node.js is installed, then run 'npm install -g codiumai' in the terminal. 2. Connect to...
General
0
linyimin
Speedup your spring application
by: linyimin | last post by:
Spring Startup Analyzer generates an interactive Spring application startup report that lets you understand what contributes to the application startup time and helps to optimize it. Support for...
General
0
Steps manually installing IntelliJ IDEA.
by: erikbower65 | last post by:
Here's a concise step-by-step guide for manually installing IntelliJ IDEA: 1. Download: Visit the official JetBrains website and download the IntelliJ IDEA Community or Ultimate edition based on...
General
2
isladogs
Access Europe meeting on Wed 6 Sept - Database Analyzer and other tools
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Sept 2023 starting at 18:00 UK time (6PM UTC+1) and finishing at about 19:15 (7.15PM) The start time is equivalent to 19:00 (7PM) in Central...
Microsoft Access / VBA
5
To verify entry of a dropdown
by: DJRhino | last post by:
Private Sub CboDrawingID_BeforeUpdate(Cancel As Integer) If = 310029923 Or 310030138 Or 310030152 Or 310030346 Or 310030348 Or _ 310030356 Or 310030359 Or 310030362 Or...
Microsoft Access / VBA
0
React to native button blinking effect
by: lllomh | last post by:
Define the method first this.state = { buttonBackgroundColor: 'green', isBlinking: false, // A new status is added to identify whether the button is blinking or not } autoStart=()=>{
Software Development
0
How does React native implement an English player?
by: lllomh | last post by:
How does React native implement an English player?
Mobile Development
0
How to calculate date of retirement from date of birth
by: Mushico | last post by:
How to calculate date of retirement from date of birth
Data Management

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2023
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes:
Post a Job
Sponsored Posts
Platinum & Gold Sponsors
Hire Now!