mirror of
https://github.com/scylladb/scylladb.git
synced 2026-06-01 04:26:48 +00:00
52e4edfd5e
Currently, when a user creates a function or a keyspace, no permissions on functions are update. Instead, the user should gain all permissions on the function that they created, or on all functions in the keyspace they have created. This is also the behavior in Cassandra. However, if the user is granted permissions on an function after performing a CREATE OR REPLACE statement, they may actually only alter the function but still gain permissions to it as a result of the approach above, which requires another workaround added to this series. Lastly, as of right now, when a user is altering a function, they need both CREATE and ALTER permissions, which is incompatible with Cassandra - instead, only the ALTER permission should be required. This series fixes the mentioned issues, and the tests are already present in the auth_roles_test dtest. Fixes #13747 Closes #13814 * github.com:scylladb/scylladb: cql: adjust tests to the updated permissions on functions cql: fix authorization when altering a function cql: grant permissions on functions when creating a keyspace/function cql: pass a reference to query processor in grant_permissions_to_creator test_permissions: make tests pass on cassandra