Mercurial > gemma
comparison schema/auth.sql @ 307:750a9c9cd965
Use SQL UPDATE to update users
This implies it's not a database error anymore to try to update a
non-existent user. Thus, handle this as a HTTP-404 in the backend,
which is in line with what GET does.
Using UPDATE here will allow to GRANT column-wise privileges. The password
has become part of the view to be updatable as well.
| author | Tom Gottfried <tom@intevation.de> |
|---|---|
| date | Wed, 01 Aug 2018 15:49:38 +0200 |
| parents | 72062ca52746 |
| children | 0745b4d336c4 |
comparison
equal
deleted
inserted
replaced
| 306:70592a18c5c6 | 307:750a9c9cd965 |
|---|---|
| 23 | 23 |
| 24 -- | 24 -- |
| 25 -- Extended privileges for sys_admin | 25 -- Extended privileges for sys_admin |
| 26 -- | 26 -- |
| 27 GRANT INSERT, UPDATE, DELETE | 27 GRANT INSERT, UPDATE, DELETE |
| 28 ON users.responsibility_areas TO sys_admin; | 28 ON users.list_users, users.responsibility_areas TO sys_admin; |
| 29 GRANT USAGE ON SCHEMA sys_admin TO sys_admin; | 29 GRANT USAGE ON SCHEMA sys_admin TO sys_admin; |
| 30 GRANT SELECT ON ALL TABLES IN SCHEMA sys_admin TO sys_admin; | 30 GRANT SELECT ON ALL TABLES IN SCHEMA sys_admin TO sys_admin; |
| 31 GRANT UPDATE ON sys_admin.system_config TO sys_admin; | 31 GRANT UPDATE ON sys_admin.system_config TO sys_admin; |
| 32 | 32 |
| 33 -- | 33 -- |