Package org.apache.derby.iapi.sql.dictionary

Examples of org.apache.derby.iapi.sql.dictionary.RoleDescriptor

11584
11585
11586
11587
11588
11589
11590
11591
11592
   * @exception StandardException  Thrown on error
   */
  public RoleDescriptor getRoleDefinitionDescriptor(String roleName)
    throws StandardException
  {
    RoleDescriptor rd = locateRoleDefinitionRow(roleName);

    return rd;
  }
View Full Code Here
11641
11642
11643
11644
11645
11646
11647
11648
11649
  public RoleDescriptor getRoleGrantDescriptor(String roleName,
                         String grantee,
                         String grantor)
    throws StandardException
  {
    RoleDescriptor rd = locateRoleGrantRow(roleName, grantee, grantor);

    return rd;
  }
View Full Code Here
11515
11516
11517
11518
11519
11520
11521
11522
11523
   * @exception StandardException  Thrown on error
   */
  public RoleDescriptor getRoleDefinitionDescriptor(String roleName)
    throws StandardException
  {
    RoleDescriptor rd = locateRoleDefinitionRow(roleName);

    return rd;
  }
View Full Code Here
11572
11573
11574
11575
11576
11577
11578
11579
11580
  public RoleDescriptor getRoleGrantDescriptor(String roleName,
                         String grantee,
                         String grantor)
    throws StandardException
  {
    RoleDescriptor rd = locateRoleGrantRow(roleName, grantee, grantor);

    return rd;
  }
View Full Code Here
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
        boolean                 wao = false;
        boolean                 isdef = false;

        if (td != null)
        {
            RoleDescriptor roleDescriptor = (RoleDescriptor)td;

            roleid = roleDescriptor.getRoleName();
            grantee = roleDescriptor.getGrantee();
            grantor = roleDescriptor.getGrantor();
            wao = roleDescriptor.isWithAdminOption();
            isdef = roleDescriptor.isDef();
            UUID oid = roleDescriptor.getUUID();
            oid_string = oid.toString();
        }

        /* Build the row to insert */
        row = getExecutionFactory().getValueRow(SYSROLES_COLUMN_COUNT);
View Full Code Here
184
185
186
187
188
189
190
191
192
193
194
         TupleDescriptor         parentTupleDescriptor,
         DataDictionary          dd )
        throws StandardException {

        DataValueDescriptor         col;
        RoleDescriptor              descriptor;
        String                      oid_string;
        String                      roleid;
        String                      grantee;
        String                      grantor;
        String                      wao;
View Full Code Here
84
85
86
87
88
89
90
91
92
93
94
        dd.startWriting(lcc);

        //
        // Check if this role already exists. If it does, throw.
        //
        RoleDescriptor rd = dd.getRoleDefinitionDescriptor(roleName);

        if (rd != null) {
            throw StandardException.
                newException(SQLState.LANG_OBJECT_ALREADY_EXISTS,
                             "Role" , roleName);
View Full Code Here
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
        ** We tell the data dictionary we're done writing at the end of
        ** the transaction.
        */
        dd.startWriting(lcc);

        RoleDescriptor rd = dd.getRoleDefinitionDescriptor(roleName);

        if (rd == null) {
            throw StandardException.newException(
                SQLState.ROLE_INVALID_SPECIFICATION, roleName);
        }

        rd.drop(lcc);

        /*
         * We dropped a role, now drop all dependents:
         * - role grants to this role
         * - grants of this role to other roles or users
View Full Code Here
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
            for (Iterator gIter = grantees.iterator(); gIter.hasNext();) {
                String grantee = (String)gIter.next();

                // check that role exists
                RoleDescriptor rd = dd.getRoleDefinitionDescriptor(role);

                if (rd == null) {
                    throw StandardException.
                        newException(SQLState.ROLE_INVALID_SPECIFICATION, role);
                }

                // Check that role is granted to us (or PUBLIC) with
                // WITH ADMIN option so we can grant (and hence
                // revoke) it. For database owner, a role definition
                // always fulfills this requirement.  If we implement
                // granting with WITH ADMIN option later, we need to
                // look for a grant to us or to PUBLIC which has WITH
                // ADMIN. The role definition descriptor will not
                // suffice in that case, so we need something like:
                //
                // rd = dd.findRoleGrantWithAdminToRoleOrPublic(grantor)
                // if (rd != null) {
                //   :
                if (grantor.equals(rd.getGrantee())) {
                    // All ok, we are database owner
                    if (SanityManager.DEBUG) {
                        SanityManager.ASSERT(
                            lcc.getDataDictionary().
                            getAuthorizationDatabaseOwner().
                            equals(grantor),
                            "expected database owner in role descriptor");
                        SanityManager.ASSERT(
                            rd.isWithAdminOption(),
                            "expected role definition to have ADMIN OPTION");
                    }
                } else {
                    throw StandardException.newException
                        (SQLState.AUTH_ROLE_DBO_ONLY, "REVOKE role");
                }

                rd = dd.getRoleGrantDescriptor(role, grantee, grantor);

                if (rd != null && withAdminOption) {
                    // NOTE: Never called yet, withAdminOption not yet
                    // implemented.

                    // revoke only the ADMIN OPTION from grantee
                    //
                    if (rd.isWithAdminOption()) {
                        // Remove old descriptor and add a new one
                        // without admin option.
                        rd.drop(lcc);
                        rd.setWithAdminOption(false);
                        dd.addDescriptor(rd,
                                         null,  // parent
                                         DataDictionary.SYSROLES_CATALOG_NUM,
                                         false, // no duplicatesAllowed
                                         tc);
                    } else {
                        activation.addWarning
                            (StandardException.newWarning
                             (SQLState.LANG_WITH_ADMIN_OPTION_NOT_REVOKED,
                              role, grantee));
                    }
                } else if (rd != null) {
                    // normal revoke of role from grantee
                    //
                    rd.drop(lcc);
                } else {
                    activation.addWarning
                        (StandardException.newWarning
                         (SQLState.LANG_ROLE_NOT_REVOKED, role, grantee));
                }
View Full Code Here
116
117
118
119
120
121
122
123
124
125
126
            ParameterValueSet pvs = activation.getParameterValueSet();
            DataValueDescriptor dvs = pvs.getParameter(0);
            thisRoleName = dvs.getString();
        }

        RoleDescriptor rd = null;

        if (thisRoleName != null) {
            try {
                rd = dd.getRoleDefinitionDescriptor(thisRoleName);
View Full Code Here
TOP

Related Classes of org.apache.derby.iapi.sql.dictionary.RoleDescriptor

  • org.apache.derby.iapi.store.access.TransactionController
  • org.apache.derby.impl.sql.catalog.DataDictionaryImpl
  • org.apache.derby.impl.sql.catalog.SYSROLESRowFactory
  • org.apache.derby.impl.sql.execute.CreateRoleConstantAction
  • org.apache.derby.impl.sql.execute.DropRoleConstantAction
  • org.apache.derby.impl.sql.execute.GrantRoleConstantAction
  • org.apache.derby.impl.sql.execute.RevokeRoleConstantAction
  • org.apache.derby.impl.sql.execute.SetRoleConstantAction
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.