Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Support fixed database role db_accessadmin #66

Merged
merged 47 commits into from
Oct 18, 2024
Merged

Support fixed database role db_accessadmin #66

Show file tree
Hide file tree
Changes from 46 commits
Commits
Show all changes
47 commits
Select commit Hold shift + click to select a range
1c2e0d9
support db_accessadmin
tanscorpio7 Sep 25, 2024
9366d6f
empty commit to rerun actions
tanscorpio7 Sep 25, 2024
60eb635
Merge branch 'server-database-roles-4-x' into BABEL-5136
tanscorpio7 Sep 25, 2024
1d235d6
add basic tests
tanscorpio7 Sep 25, 2024
6778242
fix get_authid_user_ext_physical_name
tanscorpio7 Sep 25, 2024
aa8c3a5
refactor
tanscorpio7 Sep 25, 2024
04161b7
refactor is_role() & is_user() to one function
tanscorpio7 Sep 26, 2024
c26714a
address comments
tanscorpio7 Sep 26, 2024
2f141fa
fix
tanscorpio7 Sep 26, 2024
ef05577
fix
tanscorpio7 Sep 26, 2024
fd28fd0
Merge remote-tracking branch 'upstream/BABEL_4_X_DEV' into BABEL-5136
tanscorpio7 Sep 26, 2024
f8263ad
empty commit to rerun actions
tanscorpio7 Sep 26, 2024
5ccc553
fix
tanscorpio7 Sep 26, 2024
2c6071d
fix
tanscorpio7 Sep 27, 2024
8e236af
fix
tanscorpio7 Sep 27, 2024
262ab3b
add test to upgrade
tanscorpio7 Sep 27, 2024
3377700
add test to upgrade
tanscorpio7 Sep 27, 2024
fc5a463
Merge remote-tracking branch 'origin/BABEL_4_X_DEV' into BABEL-5136
tanscorpio7 Sep 27, 2024
5ddd9c0
Merge remote-tracking branch 'origin/BABEL_4_X_DEV' into BABEL-5136
tanscorpio7 Oct 3, 2024
7b373b1
fix tests
tanscorpio7 Oct 3, 2024
2e2e2f2
fix
tanscorpio7 Oct 3, 2024
502e58f
fix
tanscorpio7 Oct 3, 2024
fdb5831
fix
tanscorpio7 Oct 3, 2024
4ef8ff2
fix
tanscorpio7 Oct 3, 2024
5361565
fix
tanscorpio7 Oct 3, 2024
e7e32fd
fix
tanscorpio7 Oct 4, 2024
ff34749
empty
tanscorpio7 Oct 4, 2024
6473217
see dump restore actions logs
tanscorpio7 Oct 4, 2024
c3949e0
ssh into github actions host
tanscorpio7 Oct 4, 2024
55a8d90
remove temp changes and reset password for login in verify file
tanscorpio7 Oct 4, 2024
b0ad65d
empty
tanscorpio7 Oct 4, 2024
4bbc598
refactor
tanscorpio7 Oct 7, 2024
cc62590
fix tests
tanscorpio7 Oct 11, 2024
4ff867a
refactor
tanscorpio7 Oct 14, 2024
4fa9423
fix is_member
tanscorpio7 Oct 14, 2024
de93217
fix is_member
tanscorpio7 Oct 14, 2024
dc0ae67
fix
tanscorpio7 Oct 14, 2024
ce81810
refactor upgrade function for creating roles
tanscorpio7 Oct 15, 2024
d2f5540
refactor
tanscorpio7 Oct 15, 2024
f2f0c56
Merge branch 'server-database-roles-4-x' into BABEL-5136
tanscorpio7 Oct 16, 2024
7fb13bc
Merge branch 'server-database-roles-4-x' into BABEL-5136
tanscorpio7 Oct 17, 2024
06b1d63
fix merge issue
tanscorpio7 Oct 17, 2024
b640fea
refactor name for upgrade function
tanscorpio7 Oct 17, 2024
e77a11f
use IS_BBF_BUILT_IN_DB macro in some more places
tanscorpio7 Oct 17, 2024
a7c8e74
empty
tanscorpio7 Oct 17, 2024
0c92528
fix upgrade file
tanscorpio7 Oct 17, 2024
83e9771
fix typo
tanscorpio7 Oct 18, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
16 changes: 9 additions & 7 deletions contrib/babelfishpg_tsql/sql/babelfishpg_tsql.sql
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2118,7 +2118,7 @@ BEGIN
LEFT OUTER JOIN pg_catalog.pg_roles AS Base4 ON Base4.rolname = Bsdb.owner
WHERE Ext1.database_name = DB_NAME()
AND (Ext1.type != 'R' OR Ext1.type != 'A')
AND Ext1.orig_username != 'db_owner'
AND Ext1.orig_username NOT IN ('db_owner', 'db_accessadmin')
ORDER BY UserName, RoleName;
END
-- If the security account is the db fixed role - db_owner
Expand Down Expand Up @@ -2150,7 +2150,7 @@ BEGIN
WHERE Ext1.database_name = DB_NAME()
AND Ext2.database_name = DB_NAME()
AND Ext1.type = 'R'
AND Ext2.orig_username != 'db_owner'
AND Ext2.orig_username NOT IN ('db_owner', 'db_accessadmin')
AND (Ext1.orig_username = @name_in_db OR pg_catalog.lower(Ext1.orig_username) = pg_catalog.lower(@name_in_db))
ORDER BY Role_name, Users_in_role;
END
Expand Down Expand Up @@ -2188,7 +2188,7 @@ BEGIN
LEFT OUTER JOIN pg_catalog.pg_roles AS Base4 ON Base4.rolname = Bsdb.owner
WHERE Ext1.database_name = DB_NAME()
AND (Ext1.type != 'R' OR Ext1.type != 'A')
AND Ext1.orig_username != 'db_owner'
AND Ext1.orig_username NOT IN ('db_owner', 'db_accessadmin')
AND (Ext1.orig_username = @name_in_db OR pg_catalog.lower(Ext1.orig_username) = pg_catalog.lower(@name_in_db))
ORDER BY UserName, RoleName;
END
Expand Down Expand Up @@ -2348,13 +2348,15 @@ CREATE OR REPLACE PROCEDURE sys.sp_helpdbfixedrole("@rolename" sys.SYSNAME = NUL
$$
BEGIN
-- Returns a list of the fixed database roles.
-- Only fixed role present in babelfish is db_owner.
IF LOWER(RTRIM(@rolename)) IS NULL OR LOWER(RTRIM(@rolename)) = 'db_owner'
IF LOWER(RTRIM(@rolename)) IS NULL OR LOWER(RTRIM(@rolename)) IN ('db_owner', 'db_accessadmin')
BEGIN
SELECT CAST('db_owner' AS sys.SYSNAME) AS DbFixedRole, CAST('DB Owners' AS sys.nvarchar(70)) AS Description;
SELECT CAST(DbFixedRole as sys.SYSNAME) AS DbFixedRole, CAST(Description AS sys.nvarchar(70)) AS Description FROM (
VALUES ('db_owner', 'DB Owners'),
('db_accessadmin', 'DB Access Administrators')) x(DbFixedRole, Description)
WHERE LOWER(RTRIM(@rolename)) IS NULL OR LOWER(RTRIM(@rolename)) = DbFixedRole;
END
ELSE IF LOWER(RTRIM(@rolename)) IN (
'db_accessadmin','db_securityadmin','db_ddladmin', 'db_backupoperator',
'db_securityadmin','db_ddladmin', 'db_backupoperator',
'db_datareader', 'db_datawriter', 'db_denydatareader', 'db_denydatawriter')
BEGIN
-- Return an empty result set instead of raising an error
Expand Down
8 changes: 6 additions & 2 deletions contrib/babelfishpg_tsql/sql/ownership.sql
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -259,7 +259,11 @@ CREATE OR REPLACE PROCEDURE initialize_babelfish ( sa_name VARCHAR(128) )
LANGUAGE plpgsql
AS $$
DECLARE
reserved_roles varchar[] := ARRAY['sysadmin', 'securityadmin', 'master_dbo', 'master_guest', 'master_db_owner', 'tempdb_dbo', 'tempdb_guest', 'tempdb_db_owner', 'msdb_dbo', 'msdb_guest', 'msdb_db_owner'];
reserved_roles varchar[] := ARRAY['sysadmin', 'securityadmin',
'master_dbo', 'master_guest', 'master_db_owner', 'master_db_accessadmin',
'tempdb_dbo', 'tempdb_guest', 'tempdb_db_owner', 'tempdb_db_accessadmin',
'msdb_dbo', 'msdb_guest', 'msdb_db_owner', 'msdb_db_accessadmin'];

user_id oid := -1;
db_name name := NULL;
role_name varchar;
Expand Down Expand Up @@ -456,7 +460,7 @@ ON Base.rolname = Ext.rolname
LEFT OUTER JOIN pg_catalog.pg_roles Base2
ON Ext.login_name = Base2.rolname
WHERE Ext.database_name = DB_NAME()
AND (Ext.orig_username IN ('dbo', 'db_owner', 'guest') -- system users should always be visible
AND (Ext.orig_username IN ('dbo', 'db_owner', 'db_accessadmin', 'guest') -- system users should always be visible
OR pg_has_role(Ext.rolname, 'MEMBER')) -- Current user should be able to see users it has permission of
UNION ALL
SELECT
Expand Down
4 changes: 3 additions & 1 deletion contrib/babelfishpg_tsql/sql/sys_functions.sql
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4501,7 +4501,9 @@ BEGIN
END IF;
ELSIF EXISTS (SELECT orig_username FROM sys.babelfish_authid_user_ext WHERE orig_username = role COLLATE sys.database_default)
THEN
IF EXISTS (SELECT name FROM sys.user_token WHERE name = role COLLATE sys.database_default)
IF (((SELECT orig_username FROM sys.babelfish_authid_user_ext WHERE rolname = CURRENT_USER) = 'dbo' COLLATE sys.database_default) AND role COLLATE sys.database_default IN ('db_owner', 'db_accessadmin'))
THEN RETURN 1;
ELSIF EXISTS (SELECT name FROM sys.user_token WHERE name = role COLLATE sys.database_default)
THEN RETURN 1; -- Return 1 if current session user is a member of role or windows group
ELSIF (is_windows_grp)
THEN RETURN NULL; -- Return NULL if session is not a windows auth session but argument is a windows group
Expand Down
215 changes: 214 additions & 1 deletion contrib/babelfishpg_tsql/sql/upgrades/babelfishpg_tsql--4.3.0--4.4.0.sql
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -70,6 +70,15 @@ EXCEPTION WHEN OTHERS THEN
END;
$$;


CREATE OR REPLACE PROCEDURE sys.create_db_roles_during_upgrade()
LANGUAGE C
AS 'babelfishpg_tsql', 'create_db_roles_during_upgrade';

CALL sys.create_db_roles_during_upgrade();

DROP PROCEDURE sys.create_db_roles_during_upgrade();

DO
LANGUAGE plpgsql
$$
Expand Down Expand Up @@ -1252,7 +1261,9 @@ BEGIN
END IF;
ELSIF EXISTS (SELECT orig_username FROM sys.babelfish_authid_user_ext WHERE orig_username = role COLLATE sys.database_default)
THEN
IF EXISTS (SELECT name FROM sys.user_token WHERE name = role COLLATE sys.database_default)
IF (((SELECT orig_username FROM sys.babelfish_authid_user_ext WHERE rolname = CURRENT_USER) = 'dbo' COLLATE sys.database_default) AND role COLLATE sys.database_default IN ('db_owner', 'db_accessadmin'))
THEN RETURN 1;
ELSIF EXISTS (SELECT name FROM sys.user_token WHERE name = role COLLATE sys.database_default)
THEN RETURN 1; -- Return 1 if current session user is a member of role or windows group
ELSIF (is_windows_grp)
THEN RETURN NULL; -- Return NULL if session is not a windows auth session but argument is a windows group
Expand Down Expand Up @@ -4216,6 +4227,208 @@ CALL sys.babelfish_drop_deprecated_object('function', 'sys', 'sp_statistics_inte

CALL sys.babelfish_drop_deprecated_object('function', 'sys', 'sp_pkeys_internal_deprecated_in_4_4_0');

-- DATABASE_PRINCIPALS
CREATE OR REPLACE VIEW sys.database_principals AS
SELECT
CAST(Ext.orig_username AS SYS.SYSNAME) AS name,
CAST(Base.oid AS INT) AS principal_id,
CAST(Ext.type AS CHAR(1)) as type,
CAST(
CASE
WHEN Ext.type = 'S' THEN 'SQL_USER'
WHEN Ext.type = 'R' THEN 'DATABASE_ROLE'
WHEN Ext.type = 'U' THEN 'WINDOWS_USER'
ELSE NULL
END
AS SYS.NVARCHAR(60)) AS type_desc,
CAST(Ext.default_schema_name AS SYS.SYSNAME) AS default_schema_name,
CAST(Ext.create_date AS SYS.DATETIME) AS create_date,
CAST(Ext.modify_date AS SYS.DATETIME) AS modify_date,
CAST(Ext.owning_principal_id AS INT) AS owning_principal_id,
CAST(CAST(Base2.oid AS INT) AS SYS.VARBINARY(85)) AS SID,
CAST(Ext.is_fixed_role AS SYS.BIT) AS is_fixed_role,
CAST(Ext.authentication_type AS INT) AS authentication_type,
CAST(Ext.authentication_type_desc AS SYS.NVARCHAR(60)) AS authentication_type_desc,
CAST(Ext.default_language_name AS SYS.SYSNAME) AS default_language_name,
CAST(Ext.default_language_lcid AS INT) AS default_language_lcid,
CAST(Ext.allow_encrypted_value_modifications AS SYS.BIT) AS allow_encrypted_value_modifications
FROM pg_catalog.pg_roles AS Base INNER JOIN sys.babelfish_authid_user_ext AS Ext
ON Base.rolname = Ext.rolname
LEFT OUTER JOIN pg_catalog.pg_roles Base2
ON Ext.login_name = Base2.rolname
WHERE Ext.database_name = DB_NAME()
AND (Ext.orig_username IN ('dbo', 'db_owner', 'db_accessadmin', 'guest') -- system users should always be visible
OR pg_has_role(Ext.rolname, 'MEMBER')) -- Current user should be able to see users it has permission of
UNION ALL
SELECT
CAST(name AS SYS.SYSNAME) AS name,
CAST(-1 AS INT) AS principal_id,
CAST(type AS CHAR(1)) as type,
CAST(
CASE
WHEN type = 'S' THEN 'SQL_USER'
WHEN type = 'R' THEN 'DATABASE_ROLE'
WHEN type = 'U' THEN 'WINDOWS_USER'
ELSE NULL
END
AS SYS.NVARCHAR(60)) AS type_desc,
CAST(NULL AS SYS.SYSNAME) AS default_schema_name,
CAST(NULL AS SYS.DATETIME) AS create_date,
CAST(NULL AS SYS.DATETIME) AS modify_date,
CAST(-1 AS INT) AS owning_principal_id,
CAST(CAST(0 AS INT) AS SYS.VARBINARY(85)) AS SID,
CAST(0 AS SYS.BIT) AS is_fixed_role,
CAST(-1 AS INT) AS authentication_type,
CAST(NULL AS SYS.NVARCHAR(60)) AS authentication_type_desc,
CAST(NULL AS SYS.SYSNAME) AS default_language_name,
CAST(-1 AS INT) AS default_language_lcid,
CAST(0 AS SYS.BIT) AS allow_encrypted_value_modifications
FROM (VALUES ('public', 'R'), ('sys', 'S'), ('INFORMATION_SCHEMA', 'S')) as dummy_principals(name, type);
GRANT SELECT ON sys.database_principals TO PUBLIC;

CREATE OR REPLACE PROCEDURE sys.sp_helpdbfixedrole("@rolename" sys.SYSNAME = NULL) AS
$$
BEGIN
-- Returns a list of the fixed database roles.
IF LOWER(RTRIM(@rolename)) IS NULL OR LOWER(RTRIM(@rolename)) IN ('db_owner', 'db_accessadmin')
BEGIN
SELECT CAST(DbFixedRole as sys.SYSNAME) AS DbFixedRole, CAST(Description AS sys.nvarchar(70)) AS Description FROM (
VALUES ('db_owner', 'DB Owners'),
('db_accessadmin', 'DB Access Administrators')) x(DbFixedRole, Description)
WHERE LOWER(RTRIM(@rolename)) IS NULL OR LOWER(RTRIM(@rolename)) = DbFixedRole;
END
ELSE IF LOWER(RTRIM(@rolename)) IN (
'db_securityadmin','db_ddladmin', 'db_backupoperator',
'db_datareader', 'db_datawriter', 'db_denydatareader', 'db_denydatawriter')
BEGIN
-- Return an empty result set instead of raising an error
SELECT CAST(NULL AS sys.SYSNAME) AS DbFixedRole, CAST(NULL AS sys.nvarchar(70)) AS Description
WHERE 1=0;
END
ELSE
RAISERROR('''%s'' is not a known fixed role.', 16, 1, @rolename);
END
$$
LANGUAGE 'pltsql';
GRANT EXECUTE ON PROCEDURE sys.sp_helpdbfixedrole TO PUBLIC;

CREATE OR REPLACE PROCEDURE sys.sp_helpuser("@name_in_db" sys.SYSNAME = NULL) AS
$$
BEGIN
-- If security account is not specified, return info about all users
IF @name_in_db IS NULL
BEGIN
SELECT CAST(Ext1.orig_username AS SYS.SYSNAME) AS 'UserName',
CAST(CASE WHEN Ext1.orig_username = 'dbo' THEN 'db_owner'
WHEN Ext2.orig_username IS NULL THEN 'public'
ELSE Ext2.orig_username END
AS SYS.SYSNAME) AS 'RoleName',
CAST(CASE WHEN Ext1.orig_username = 'dbo' THEN Base4.rolname COLLATE database_default
ELSE LogExt.orig_loginname END
AS SYS.SYSNAME) AS 'LoginName',
CAST(LogExt.default_database_name AS SYS.SYSNAME) AS 'DefDBName',
CAST(Ext1.default_schema_name AS SYS.SYSNAME) AS 'DefSchemaName',
CAST(Base1.oid AS INT) AS 'UserID',
CAST(CASE WHEN Ext1.orig_username = 'dbo' THEN CAST(Base4.oid AS INT)
WHEN Ext1.orig_username = 'guest' THEN CAST(0 AS INT)
ELSE CAST(Base3.oid AS INT) END
AS SYS.VARBINARY(85)) AS 'SID'
FROM sys.babelfish_authid_user_ext AS Ext1
INNER JOIN pg_catalog.pg_roles AS Base1 ON Base1.rolname = Ext1.rolname
LEFT OUTER JOIN pg_catalog.pg_auth_members AS Authmbr ON Base1.oid = Authmbr.member
LEFT OUTER JOIN pg_catalog.pg_roles AS Base2 ON Base2.oid = Authmbr.roleid
LEFT OUTER JOIN sys.babelfish_authid_user_ext AS Ext2 ON Base2.rolname = Ext2.rolname
LEFT OUTER JOIN sys.babelfish_authid_login_ext As LogExt ON LogExt.rolname = Ext1.login_name
LEFT OUTER JOIN pg_catalog.pg_roles AS Base3 ON Base3.rolname = LogExt.rolname
LEFT OUTER JOIN sys.babelfish_sysdatabases AS Bsdb ON Bsdb.name = DB_NAME()
LEFT OUTER JOIN pg_catalog.pg_roles AS Base4 ON Base4.rolname = Bsdb.owner
WHERE Ext1.database_name = DB_NAME()
AND (Ext1.type != 'R' OR Ext1.type != 'A')
AND Ext1.orig_username != 'db_owner'
AND Ext1.orig_username NOT IN ('db_owner', 'db_accessadmin')
ORDER BY UserName, RoleName;
END
-- If the security account is the db fixed role - db_owner
ELSE IF @name_in_db = 'db_owner'
BEGIN
-- TODO: Need to change after we can add/drop members to/from db_owner
SELECT CAST('db_owner' AS SYS.SYSNAME) AS 'Role_name',
ROLE_ID('db_owner') AS 'Role_id',
CAST('dbo' AS SYS.SYSNAME) AS 'Users_in_role',
USER_ID('dbo') AS 'Userid';
END
-- If the security account is a db role
ELSE IF EXISTS (SELECT 1
FROM sys.babelfish_authid_user_ext
WHERE (orig_username = @name_in_db
OR pg_catalog.lower(orig_username) = pg_catalog.lower(@name_in_db))
AND database_name = DB_NAME()
AND type = 'R')
BEGIN
SELECT CAST(Ext1.orig_username AS SYS.SYSNAME) AS 'Role_name',
CAST(Base1.oid AS INT) AS 'Role_id',
CAST(Ext2.orig_username AS SYS.SYSNAME) AS 'Users_in_role',
CAST(Base2.oid AS INT) AS 'Userid'
FROM sys.babelfish_authid_user_ext AS Ext2
INNER JOIN pg_catalog.pg_roles AS Base2 ON Base2.rolname = Ext2.rolname
INNER JOIN pg_catalog.pg_auth_members AS Authmbr ON Base2.oid = Authmbr.member
LEFT OUTER JOIN pg_catalog.pg_roles AS Base1 ON Base1.oid = Authmbr.roleid
LEFT OUTER JOIN sys.babelfish_authid_user_ext AS Ext1 ON Base1.rolname = Ext1.rolname
WHERE Ext1.database_name = DB_NAME()
AND Ext2.database_name = DB_NAME()
AND Ext1.type = 'R'
AND Ext2.orig_username != 'db_owner'
AND Ext2.orig_username NOT IN ('db_owner', 'db_accessadmin')
AND (Ext1.orig_username = @name_in_db OR pg_catalog.lower(Ext1.orig_username) = pg_catalog.lower(@name_in_db))
ORDER BY Role_name, Users_in_role;
END
-- If the security account is a user
ELSE IF EXISTS (SELECT 1
FROM sys.babelfish_authid_user_ext
WHERE (orig_username = @name_in_db
OR pg_catalog.lower(orig_username) = pg_catalog.lower(@name_in_db))
AND database_name = DB_NAME()
AND type != 'R')
BEGIN
SELECT DISTINCT CAST(Ext1.orig_username AS SYS.SYSNAME) AS 'UserName',
CAST(CASE WHEN Ext1.orig_username = 'dbo' THEN 'db_owner'
WHEN Ext2.orig_username IS NULL THEN 'public'
ELSE Ext2.orig_username END
AS SYS.SYSNAME) AS 'RoleName',
CAST(CASE WHEN Ext1.orig_username = 'dbo' THEN Base4.rolname COLLATE database_default
ELSE LogExt.orig_loginname END
AS SYS.SYSNAME) AS 'LoginName',
CAST(LogExt.default_database_name AS SYS.SYSNAME) AS 'DefDBName',
CAST(Ext1.default_schema_name AS SYS.SYSNAME) AS 'DefSchemaName',
CAST(Base1.oid AS INT) AS 'UserID',
CAST(CASE WHEN Ext1.orig_username = 'dbo' THEN CAST(Base4.oid AS INT)
WHEN Ext1.orig_username = 'guest' THEN CAST(0 AS INT)
ELSE CAST(Base3.oid AS INT) END
AS SYS.VARBINARY(85)) AS 'SID'
FROM sys.babelfish_authid_user_ext AS Ext1
INNER JOIN pg_catalog.pg_roles AS Base1 ON Base1.rolname = Ext1.rolname
LEFT OUTER JOIN pg_catalog.pg_auth_members AS Authmbr ON Base1.oid = Authmbr.member
LEFT OUTER JOIN pg_catalog.pg_roles AS Base2 ON Base2.oid = Authmbr.roleid
LEFT OUTER JOIN sys.babelfish_authid_user_ext AS Ext2 ON Base2.rolname = Ext2.rolname
LEFT OUTER JOIN sys.babelfish_authid_login_ext As LogExt ON LogExt.rolname = Ext1.login_name
LEFT OUTER JOIN pg_catalog.pg_roles AS Base3 ON Base3.rolname = LogExt.rolname
LEFT OUTER JOIN sys.babelfish_sysdatabases AS Bsdb ON Bsdb.name = DB_NAME()
LEFT OUTER JOIN pg_catalog.pg_roles AS Base4 ON Base4.rolname = Bsdb.owner
WHERE Ext1.database_name = DB_NAME()
AND (Ext1.type != 'R' OR Ext1.type != 'A')
AND Ext1.orig_username != 'db_owner'
AND Ext1.orig_username NOT IN ('db_owner', 'db_accessadmin')
AND (Ext1.orig_username = @name_in_db OR pg_catalog.lower(Ext1.orig_username) = pg_catalog.lower(@name_in_db))
ORDER BY UserName, RoleName;
END
-- If the security account is not valid
ELSE
RAISERROR ( 'The name supplied (%s) is not a user, role, or aliased login.', 16, 1, @name_in_db);
END;
$$
LANGUAGE 'pltsql';
GRANT EXECUTE on PROCEDURE sys.sp_helpuser TO PUBLIC;

CREATE OR REPLACE VIEW sys.sp_sproc_columns_view
AS
SELECT
Expand Down
Loading
Loading