3 Security
Dynamic Data Service provides table level, row level, and column level security. All the end points are protected with basic authentication and role based authorization.
There are three security groups that provide role based authorization.
There are three Roles and three Groups.
Roles:
-
AdminRole - Users with this role have access to all the functions of the DDS app. They can also setup the security permissions for other users.
-
OperatorRole - Users with this role have the ability to read, write and modify content in the schemas and tables. However they will not have access to the admin functions and cannot setup security permissions.
-
MonitorRole - Users with this role can only read the data from schemas and tables. They also will not have access to security setup functions.
Groups:
-
RicsAdminGroup - Users that belong to this group can perform all operations
-
RicsOperatorGroup - Users that belong to this group can perform all operations except security setup
-
RicsMonitorGroup - Users that belong to this group can only perform read only operations
The following table lists all the functions which can be performed by the roles and groups mentioned above.
Table 3-1 Functions Performed by Roles and Groups
Role Name | Admin Role | Operator Role | Monitor Role |
---|---|---|---|
Group Name | RicsAdminGroup | RicsOperatorGroup | RicsMonitorGroup |
Create Access Level |
Yes |
No |
No |
Delete Access Level |
Yes |
No |
No |
Create Security Group |
Yes |
No |
No |
Delete Security Group |
Yes |
No |
No |
Create Table Level Security |
Yes |
No |
No |
Delete Table Level Security |
Yes |
No |
No |
View Table Definition |
Yes |
Yes |
Yes |
Create Queries |
Yes |
Yes |
Yes |
Run Queries |
Yes |
Yes |
Yes |
View Table Data |
Yes |
Yes |
Yes |
Modify Table data |
Yes |
Yes |
No |
Delete Table Data |
Yes |
Yes |
No |
Bulk Update Table Data |
Yes |
Yes |
No |