db-derby-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Rick Hillegas (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (DERBY-2470) No authentication required to restore a backup
Date Mon, 29 Oct 2012 17:00:13 GMT

    [ https://issues.apache.org/jira/browse/DERBY-2470?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13486147#comment-13486147
] 

Rick Hillegas commented on DERBY-2470:
--------------------------------------

Note that if you have system-level authentication turned on, then the RESTORE can only be
performed by a user who has system-wide credentials. What is missing at this point is some
way to control the privileges of system-wide users. Right now, any use with system-wide privileges
has the power to create/restore databases as well as the power to shutdown the whole engine.
                
> No authentication required to restore a backup
> ----------------------------------------------
>
>                 Key: DERBY-2470
>                 URL: https://issues.apache.org/jira/browse/DERBY-2470
>             Project: Derby
>          Issue Type: Bug
>          Components: Tools
>    Affects Versions: 10.2.2.0
>         Environment: Java 1.6.0-b105
> Linux 2.6.20 i686
>            Reporter: Juha Heljoranta
>              Labels: derby_triage10_5_2
>
> My Derby has following properties set:
> derby.connection.requireAuthentication=true
> derby.authentication.provider=BUILTIN
> derby.database.defaultConnectionMode=noAccess
> derby.database.fullAccessUsers=foo
> derby.user.foo=bar
> If I'll execute a restore statement from ij the backup will be restored plus it gives
an authentication error:
> ij> connect 'jdbc:derby:sample;restoreFrom=backup1';
> ERROR 08004: Connection refused : Invalid authentication
> If I add the user and password arguments to the url then the restore works as before
without the error message.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message