User/Role are identified by unique id #85396
Labels
C-enhancement
Solution expected to add code/behavior + preserve backward-compat (pg compat issues are exception)
O-community
Originated from the community
X-blathers-untriaged
blathers was unable to find an owner
Cockroach v22.1.5 CCL
There are two terminal or clients connected to cockroach server. Terminal 1(named as T1): create database, table, user and control privileges. Terminal 2 (named as T2): execure query on object.
And then,
u1
login in Terminal 2:Now, I revoke grants and drop USER
u1
in Terminal 1, but DO NOT disconnect in Terminal 2. The Terminal 2 is always keeping the connection.And magic things occured! The USER
u1
in Logged in Terminal2 now have the privilege to insert data into tabletb2
.The USER
u1
created in Terminal 1 secondly is different from the USERu1
created in Terminal 1 first. BUT, actually they seem/are the same in cockroach. This will make customers confuse.To avoid this problem, to add
USER ID
insystem.users
.USER IDs
are different among users even they have the save name when they're DROPPED AND re-CREATED. Doing so can gurantee every user created is unique.A suggestion is : Adding userid/roleid field to
system.users
.Jira issue: CRDB-18227
The text was updated successfully, but these errors were encountered: