Mercurial > gemma
comparison schema/auth.sql @ 307:750a9c9cd965
Use SQL UPDATE to update users
This implies it's not a database error anymore to try to update a
non-existent user. Thus, handle this as a HTTP-404 in the backend,
which is in line with what GET does.
Using UPDATE here will allow to GRANT column-wise privileges. The password
has become part of the view to be updatable as well.
author | Tom Gottfried <tom@intevation.de> |
---|---|
date | Wed, 01 Aug 2018 15:49:38 +0200 |
parents | 72062ca52746 |
children | 0745b4d336c4 |
comparison
equal
deleted
inserted
replaced
306:70592a18c5c6 | 307:750a9c9cd965 |
---|---|
23 | 23 |
24 -- | 24 -- |
25 -- Extended privileges for sys_admin | 25 -- Extended privileges for sys_admin |
26 -- | 26 -- |
27 GRANT INSERT, UPDATE, DELETE | 27 GRANT INSERT, UPDATE, DELETE |
28 ON users.responsibility_areas TO sys_admin; | 28 ON users.list_users, users.responsibility_areas TO sys_admin; |
29 GRANT USAGE ON SCHEMA sys_admin TO sys_admin; | 29 GRANT USAGE ON SCHEMA sys_admin TO sys_admin; |
30 GRANT SELECT ON ALL TABLES IN SCHEMA sys_admin TO sys_admin; | 30 GRANT SELECT ON ALL TABLES IN SCHEMA sys_admin TO sys_admin; |
31 GRANT UPDATE ON sys_admin.system_config TO sys_admin; | 31 GRANT UPDATE ON sys_admin.system_config TO sys_admin; |
32 | 32 |
33 -- | 33 -- |