Uploaded image for project: 'Drivers'
  1. Drivers
  2. DRIVERS-645

Ability to impersonate other users

XMLWordPrintableJSON

    • Type: Icon: Epic Epic
    • Resolution: Fixed
    • Priority: Icon: Major - P3 Major - P3
    • None
    • Component/s: None
    • $i18n.getText("admin.common.words.hide")
      Key Status/Resolution FixVersion
      GODRIVER-1392 Won't Do
      $i18n.getText("admin.common.words.show")
      #scriptField, #scriptField *{ border: 1px solid black; } #scriptField{ border-collapse: collapse; } #scriptField td { text-align: center; /* Center-align text in table cells */ } #scriptField td.key { text-align: left; /* Left-align text in the Key column */ } #scriptField a { text-decoration: none; /* Remove underlines from links */ border: none; /* Remove border from links */ } /* Add green background color to cells with FixVersion */ #scriptField td.hasFixVersion { background-color: #00FF00; /* Green color code */ } /* Center-align the first row headers */ #scriptField th { text-align: center; } Key Status/Resolution FixVersion GODRIVER-1392 Won't Do

      Epic Summary

      Summary

      Allow privileged users to gain or shed privileges for particular operations.

      Motivation

      Some applications perform database operations with a single privileged account on the behalf of multiple clients. These clients use some form of application level authentication and authorization in order to gain access to privileged resources. Applications must be carefully written to ensure that its authorization model is strictly enforced.

      Using this functionality, an application would be able to temporarily scope its database privileges to those required to perform operations for a particular client. This would mitigate some of the risk of a client attempting to bypass the application authorization model and manipulate database resources that it shouldn't be able to access.

      Lead : Jeff
      Author : Divjot
      POCs : GO

      Documentation

      Scope Document
      Technical Design Document

            Assignee:
            Unassigned Unassigned
            Reporter:
            rathi.gnanasekaran Rathi Gnanasekaran
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

              Created:
              Updated:
              Resolved: