In this Article, I am going to discuss about RIGHTS of a USER in Composite.
Many people often get confused between RIGHTS and PRIVILEGES in Composite. This article should give you a clear picture of RIGHTS in Composite.
As of Composite 6.2 there are 10 different RIGHTS that can be assigned to a USER or a GROUP in Composite. Composite RIGHTS are assigned to GROUPS and USERS to perform actions with the Composite Information Server. Rights determine which parts of Composite each user can access and use.
Rights enable display and modification of server configurations.
It is always advised to create GROUPS, add USERS to the GROUPS and then assign RIGHTS to the created GROUPS. Users who are members of groups inherit all rights assigned to those groups.
RIGHTS:
1 ACCESS_TOOLS
2 READ_ALL_CONFIG
3 MODIFY_ALL_CONFIG
4 READ_ALL_RESOURCES
5 MODIFY_ALL_RESOURCES
6 READ_ALL_STATUS
7 MODIFY_ALL_STATUS
8 READ_ALL_USERS
9 MODIFY_ALL_USERS
10 UNLOCK_RESOURCE
RIGHTS DESCRIPTION:
1 ACCESS_TOOLS
As the name itself suggests, a USER or a GROUP having this privilege will have access to COMPOSITE tools. Without this RIGHT, the user can only use JDBC, ODBC and Web Services to access the server and underlying native sources. All Composite tools require this RIGHT. End-Users are denied this RIGHT because they are usually interested in Data rather than the implementation details.
2 READ_ALL_CONFIG
Composite has many configuration settings like Web Services Interface setting, Studio Data setting, Data Source settings and so in. A USER or a GROUP having this RIGHT assigned can view all the CONFIG settings in Composite.
3 MODIFY_ALL_CONFIG
A USER or a GROUP having this RIGHT assigned can view and modify all the CONFIG settings in Composite.
4 READ_ALL_RESOURCES
A USER or a GROUP having this RIGHT assigned can READ (view) all the Composite RESOURCES.
5 MODIFY_ALL_RESOURCES
A USER or a GROUP having this RIGHT assigned can READ(view) and MODIFY all the Composite RESOURCES.
6 READ_ALL_STATUS
A USER or a GROUP having this RIGHT assigned can READ(view) the Composite SESSIONS, TRANSACTIONS, REQUESTS, CACHES, DATA SOURCES and TRIGGERS.
7 MODIFY_ALL_STATUS
A USER or a GROUP having this RIGHT assigned can terminate sessions, transactions, and requests, clearing caches, and even stopping or restarting the server.
8 READ_ALL_USERS
A USER or a GROUP having this RIGHT assigned can READ(view) the Composite DOMAINS, GROUPS and USERS.
9 MODIFY_ALL_USERS
A USER or a GROUP having this RIGHT assigned can READ(view) and MODIFY the Composite DOMAINS, GROUPS and USERS. This RIGHT gives full administrative power as it can provide RIGHTS to any RESOURCE in Composite.
10 UNLOCK_RESOURCE
This RIGHT gives the USER or GROUP the ability to UNLOCK resources (irrespective of who has actually LOCKED the resource).
Many people often get confused between RIGHTS and PRIVILEGES in Composite. This article should give you a clear picture of RIGHTS in Composite.
As of Composite 6.2 there are 10 different RIGHTS that can be assigned to a USER or a GROUP in Composite. Composite RIGHTS are assigned to GROUPS and USERS to perform actions with the Composite Information Server. Rights determine which parts of Composite each user can access and use.
Rights enable display and modification of server configurations.
It is always advised to create GROUPS, add USERS to the GROUPS and then assign RIGHTS to the created GROUPS. Users who are members of groups inherit all rights assigned to those groups.
RIGHTS:
1 ACCESS_TOOLS
2 READ_ALL_CONFIG
3 MODIFY_ALL_CONFIG
4 READ_ALL_RESOURCES
5 MODIFY_ALL_RESOURCES
6 READ_ALL_STATUS
7 MODIFY_ALL_STATUS
8 READ_ALL_USERS
9 MODIFY_ALL_USERS
10 UNLOCK_RESOURCE
 |
| RIGHTS of a USER/GROUP |
RIGHTS DESCRIPTION:
1 ACCESS_TOOLS
As the name itself suggests, a USER or a GROUP having this privilege will have access to COMPOSITE tools. Without this RIGHT, the user can only use JDBC, ODBC and Web Services to access the server and underlying native sources. All Composite tools require this RIGHT. End-Users are denied this RIGHT because they are usually interested in Data rather than the implementation details.
2 READ_ALL_CONFIG
Composite has many configuration settings like Web Services Interface setting, Studio Data setting, Data Source settings and so in. A USER or a GROUP having this RIGHT assigned can view all the CONFIG settings in Composite.
3 MODIFY_ALL_CONFIG
A USER or a GROUP having this RIGHT assigned can view and modify all the CONFIG settings in Composite.
4 READ_ALL_RESOURCES
A USER or a GROUP having this RIGHT assigned can READ (view) all the Composite RESOURCES.
5 MODIFY_ALL_RESOURCES
A USER or a GROUP having this RIGHT assigned can READ(view) and MODIFY all the Composite RESOURCES.
6 READ_ALL_STATUS
A USER or a GROUP having this RIGHT assigned can READ(view) the Composite SESSIONS, TRANSACTIONS, REQUESTS, CACHES, DATA SOURCES and TRIGGERS.
7 MODIFY_ALL_STATUS
A USER or a GROUP having this RIGHT assigned can terminate sessions, transactions, and requests, clearing caches, and even stopping or restarting the server.
8 READ_ALL_USERS
A USER or a GROUP having this RIGHT assigned can READ(view) the Composite DOMAINS, GROUPS and USERS.
9 MODIFY_ALL_USERS
A USER or a GROUP having this RIGHT assigned can READ(view) and MODIFY the Composite DOMAINS, GROUPS and USERS. This RIGHT gives full administrative power as it can provide RIGHTS to any RESOURCE in Composite.
10 UNLOCK_RESOURCE
This RIGHT gives the USER or GROUP the ability to UNLOCK resources (irrespective of who has actually LOCKED the resource).
No comments:
Post a Comment