Odysseus provides a fine grained user management. Users can be managed with Odysseus Script or CQL.
Permissions
Typically, a user has all rights on the elements he/she creates., i.e. a user can start a query that he/she has created. Permission (e.g. to stop a query) can be given to other users. This is the list of typically available permissions in Odysseus. The set of permissions can be extended by other plugins.
Permission | Explanation |
|---|---|
ADD_ENTITY | Right to define a new source schema |
GET_ENTITY | Right to read the schema of a source |
REMOVE_ENTITY | Right to remove a source schema |
ADD_DATATYPE | Right to add a new datatype |
ADD_SOURCETYPE | Right to add a new source type |
ADD_STREAM | Right to attach a stream to the system |
REMOVE_STREAM | Right to remove a single from the system |
REMOVE_VIEW | Right to remove a single view from the system |
ADD_VIEW | Right to add a view to the system |
READ | Right to read elements from a query |
ADD_STORED_PROCEDURE | Right to add a stored procedure |
REMOVE_STORED_PROCEDURE | Right to remove a stored procedure |
EXECUTE | Right to execute a stored procedure |
ADD_STORE | Right to add a context store |
REMOVE_STORE | Right to remove a context store |
GET_ALL | Right to get all information (e.g. for queries or views) |
REMOVE_ALL | Right to remove all (e.g. queries or views) |
CREATE_TENANT | Right to create a new tenant |
CREATE_USER | Right to create a new user |
ALTER_USER | Right to alter a user (e.g. change password) |
DELETE_USER | Right to remove a user from the system |
DEACTIVATE_USER | Right to deactivate a user |
SET_SYSTEM_USER | Right to declare a user a system user (administrator) |
CREATE_ROLE | Right to create roles |
DELETE_ROLE | Right to delete roles |
GRANT | Right to grant (some) permissions |
GRANT_ALL | Right to grant all permissions |
REVOKE | Right to revoke (some) permissions |
REVOKE_ALL | Right to revoke all permissions |
GRANT_ROLE | Right to grand a user to a role |
REVOKE_ROLE | Right to revoke a role from a user |
LOGOUT | Right to logout |
GET_ALL_USER | Right to see all users |
SUDO_LOGIN | Right to login as other user |
ADD_QUERY | Right to create a query |
GET_QUERY | Right to access a single query |
START_QUERY | Right to start a single query |
STOP_QUERY | Right to stop a single query |
REMOVE_QUERY | Right to remove a single query |
SUSPEND_QUERY | Right to suspend a single query |
RESUME_QUERY | Right to resume a single query |
PARTIAL_QUERY | Right to set a single query to partial state |
START_ALL_QUERIES | Right to start any query |
STOP_ALL_QUERIES | Right to stop any query |
REMOVE_ALL_QUERIES | Right to remove any query |
GET_ALL_QUERIES | Right to access any query |
SET_SCHEDULER | Right to set the scheduler |
START_SCHEDULER | Right to start the scheduler |
STOP_SCHEDULER | Right to stop the scheduler |
RUN_COMMAND | Right to run a command |
SET_PARAM | Right to set an Odysseus parameter (Odysseus Configuration) for the current running instance |
SAVE_PARAM | Right to set an Odysseus parameter and persist this |