Subscribe for automatic updates: RSS icon RSS

Login icon Sign in for full access | Help icon Help
Advanced search

Pages: [1]
« previous next »
  Reply  |  Print  
Author Topic: Informix 11.70 trusted connections  (Read 9413 times)
Snorri B.
Posts: 103
« on: April 06, 2011, 12:43:16 pm »
Hi.

There is a major new feature in Informix 11.70 called "Trusted-context objects and trusted connections".  The client software must be able to do this:

CONNECT TO "mydb" TRUSTED;

Are there plans to implement this in Genero?

http://publib.boulder.ibm.com/infocenter/idshelp/v117/topic/com.ibm.sec.doc/ids_tru_001.htm
Olivier E.
Four Js
Posts: 199
« Reply #1 on: April 08, 2011, 06:32:08 pm »
Hello Snorri,


You are right this is a major feature in IDS 11.70, the implementation is not yet planned in Genero.

We will begin the feature request process :

  • Create a feature request and send to you the feature number.
  • Evaluate the feasibility of the feature.
  • If it is feasible we will plan it in a future release.

I keep you posted for the feature number.


Thank you,

Olivier ECKERT - Four Js support team
Olivier E.
Four Js
Posts: 199
« Reply #2 on: April 11, 2011, 04:09:44 pm »
Hello Snorri,


The Four Js feature request number : "#20085 : Support INFORMIX 11.70 trusted connections" has been registered.

We are are working on the feasibility evaluation.

If other customers are interested in this feature, please send an email to your local support center.
We will add your company name in the wish list of this feature request #20085.

Thank you and regards,

Olivier ECKERT - Four Js support team
Reuben B.
Four Js
Posts: 1062
« Reply #3 on: April 12, 2011, 01:24:19 am »
From my quick read of the feature, I believe this would benefit Web Services.  Correct me if I am wrong but a web service function could change the "user" that is connected to the database by executing a

SET SESSION AUTHORIZATION TO 'user';

where user is passed via the web service call, as opposed to currently the web service would have to DISCONNECT and CONNECT again using the new user which normally has some overhead.

This allows you to then use USER in your sql and/or triggers knowing that it relates to the person running the application, and not the process owner of the web service.
Product Consultant (Asia Pacific)
Developer Relations Manager (Worldwide)
Author of https://4js.com/ask-reuben
Contributor to https://github.com/FourjsGenero
Snorri B.
Posts: 103
« Reply #4 on: April 12, 2011, 10:33:46 am »
Ruben, you are spot on. Web services will benefit greatly from this. This basically gives you application based security.

Regards,
-Snorri
Sebastien F.
Four Js
Posts: 509
« Reply #5 on: April 12, 2011, 11:34:42 am »
We are looking at trusted connections...

Note that you have to install IDS 11.70.XC2 to use this feature, I faced a bug in 11.70.UC1 on Linux:

CREATE USER statement failed with syntax error...

Fixed in 11.70.UC2...

Seb
Sebastien F.
Four Js
Posts: 509
« Reply #6 on: April 12, 2011, 02:54:44 pm »
Quote from: Sebastien FLAESCH on April 12, 2011, 11:34:42 am
Note that you have to install IDS 11.70.XC2 to use this feature, I faced a bug in 11.70.UC1 on Linux:
CREATE USER statement failed with syntax error...
Fixed in 11.70.UC2...
Seb

By reading the documentation section about CREATE USER (mapped and internally authenticated users), it appears that this feature was introduced in the 11.70.xC2 release and was not in 11.70.xC1 ... So it's not a bug, CREATE USER was not existing in 11.70.xC1.

The fact that CREATE TRUSTED CONTEXT is supported in 11.70.xC1 confused me... :-(

Seb
Pages: [1]
  Reply  |  Print  
« previous next »
 
Jump to:  

Powered by SMF 1.1.21 | SMF © 2015, Simple Machines