Make access_check_ddl check for entity privileges.
Function access_check_ddl checked only for universal access, thus granting entity or singe object access to a user would have no effect in scope of this function. Fix this by adding entity access checks. Also attaching an existing sequence to a space checked for create privilege on both space and sequence (instead of read + write on sequence). Fixed it and changed the tests accordingly. Closes #3516
Showing
- src/box/alter.cc 22 additions, 4 deletionssrc/box/alter.cc
- test/box/access.result 25 additions, 4 deletionstest/box/access.result
- test/box/access.test.lua 17 additions, 4 deletionstest/box/access.test.lua
- test/box/sequence.result 111 additions, 14 deletionstest/box/sequence.result
- test/box/sequence.test.lua 45 additions, 12 deletionstest/box/sequence.test.lua
Loading
Please register or sign in to comment