head	1.3;
access;
symbols;
locks; strict;
comment	@# @;


1.3
date	2000.04.26.15.27.12;	author bernie;	state Exp;
branches;
next	1.2;

1.2
date	2000.02.21.13.29.22;	author bernie;	state Exp;
branches;
next	1.1;

1.1
date	2000.02.02.21.13.29;	author bernie;	state Exp;
branches;
next	;


desc
@@


1.3
log
@Turbine User Admin Permissions updated
@
text
@## Script to fill the tables with default roles and permissions
## for Jyve
## Currently tested with MySQL only.
## If you have access to Oracle, I'd appreciate if you could add script
## for it.
##
## date created:  21. Jan. 2000
## last modified: 26. Apr. 2000 
## author:       Bernie Hoeneisen, ETH Zurich <bhoeneis@@ee.ethz.ch>
##


## Clean up all old Role Permissions

# Delete all existing Visitor - Role assignments
delete from VisitorRole ;

# Delete all existing Roles
delete from UserRole ;

# Delete all existing Permissions
delete from Permission ;

# Delete all existing Role - Permissions assignments
delete from RolePermission ;


## Create Roles (or Groups)

# Role with all Permissions
insert into UserRole (ROLENAME) values ("root");

# Role with Permission to change Roles, Permissions and 
# other user information in the database
insert into UserRole (ROLENAME) values ("user_admin");

# Role with all Permissions from Jyve, but not from
# Turbine (add_/modify_user/group/permissions) 
insert into UserRole (ROLENAME) values ("admin");

# Role which can be assigned more Permsissions manually
# (e.g. add, modify, ... Permissions)
insert into UserRole (ROLENAME) values ("trusted_user");

# Default role for users with a vadid email address
# (e.g. add only Permission)
insert into UserRole (ROLENAME) values ("authenticated_user");

# Role with no special Permission (can only see the entries)
insert into UserRole (ROLENAME) values ("guest");


## Assign all confirmed Users the role of an 'authenticated_user'
## Do not assign, if password_value is emtpy or NULL or
## if loginid = 'Anonymous Guest'.
insert into VisitorRole ( VISITORID, ROLEID ) select Visitor.VISITORID, UserRole.RoleID from Visitor, UserRole where Visitor.confirm_value = 'CONFIRMED' AND Visitor.password_value != '' AND Visitor.password_value IS NOT NULL AND Visitor.loginid != "Anonymous Guest" AND UserRole.rolename = 'authenticated_user';

## Do assign the user 'Anonymous Guest' the role of a 'guest'
insert into VisitorRole ( VISITORID, ROLEID ) select Visitor.VISITORID, UserRole.RoleID from Visitor, UserRole where Visitor.loginid = "Anonymous Guest" AND UserRole.rolename = 'guest';


## add (turbine) user administration permissions
insert into Permission (PERMISSION) values ('view_user');
insert into Permission (PERMISSION) values ('add_user');
insert into Permission (PERMISSION) values ('modify_user');
insert into Permission (PERMISSION) values ('view_group');
insert into Permission (PERMISSION) values ('add_group');
insert into Permission (PERMISSION) values ('modify_group');
insert into Permission (PERMISSION) values ('view_permission');
insert into Permission (PERMISSION) values ('add_permission');
insert into Permission (PERMISSION) values ('modify_permission');
insert into Permission (PERMISSION) values ('view_role');
insert into Permission (PERMISSION) values ('add_role');
insert into Permission (PERMISSION) values ('modify_role');
 

## Assign (turbine) user administration permissions to the root role
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'view_user' and  UserRole.ROLENAME = 'root';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'add_user' and  UserRole.ROLENAME = 'root';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'modify_user' and  UserRole.ROLENAME = 'root';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'view_group' and  UserRole.ROLENAME = 'root';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'add_group' and  UserRole.ROLENAME = 'root';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'modify_group' and  UserRole.ROLENAME = 'root';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'view_permission' and  UserRole.ROLENAME = 'root';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'add_permission' and  UserRole.ROLENAME = 'root';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'modify_permission' and  UserRole.ROLENAME = 'root';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'view_role' and  UserRole.ROLENAME = 'root';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'add_role' and  UserRole.ROLENAME = 'root';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'modify_role' and  UserRole.ROLENAME = 'root';


## Assign (turbine) user administration permissions to the user_admin role
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'view_user' and  UserRole.ROLENAME = 'user_admin';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'add_user' and  UserRole.ROLENAME = 'user_admin';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'modify_user' and  UserRole.ROLENAME = 'user_admin';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'view_group' and  UserRole.ROLENAME = 'user_admin';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'add_group' and  UserRole.ROLENAME = 'user_admin';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'modify_group' and  UserRole.ROLENAME = 'user_admin';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'view_permission' and  UserRole.ROLENAME = 'user_admin';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'add_permission' and  UserRole.ROLENAME = 'user_admin';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'modify_permission' and  UserRole.ROLENAME = 'user_admin';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'view_role' and  UserRole.ROLENAME = 'user_admin';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'add_role' and  UserRole.ROLENAME = 'user_admin';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'modify_role' and  UserRole.ROLENAME = 'user_admin';

@


1.2
log
@update for new permissions modify_own_*
added new role 'user_admin'
commented user_admin permissions (not used right now),
small bug fix (special treatment of 'Anonyous Guest')
@
text
@d7 2
a8 1
## date created: 21. Jan. 2000
d63 12
a74 7
## (currently not used in Jyve)
# insert into Permission (PERMISSION) values ("add_user");
# insert into Permission (PERMISSION) values ("modify_user");
# insert into Permission (PERMISSION) values ("add_group");
# insert into Permission (PERMISSION) values ("modify_group");
# insert into Permission (PERMISSION) values ("add_permission");
# insert into Permission (PERMISSION) values ("modify_permission");
d78 27
a104 8
## (currently not used in Jyve)
# insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'add_user' and  UserRole.ROLENAME = 'root';
# insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'modify_user' and  UserRole.ROLENAME = 'root';
# insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'add_group' and  UserRole.ROLENAME = 'root';
# insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'modify_group' and  UserRole.ROLENAME = 'root';
# insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'add_permission' and  UserRole.ROLENAME = 'root';
# insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'modify_permission' and  UserRole.ROLENAME = 'root';
 
@


1.1
log
@Database prepartions for new security feature
@
text
@d32 4
d53 6
a58 1
insert into VisitorRole ( VISITORID, ROLEID ) select Visitor.VISITORID, UserRole.RoleID from Visitor, UserRole where Visitor.confirm_value = 'CONFIRMED' AND UserRole.rolename = 'authenticated_user';
d62 8
a69 7
insert into Permission (PERMISSION) values ("add_user");
insert into Permission (PERMISSION) values ("modify_user");
insert into Permission (PERMISSION) values ("add_group");
insert into Permission (PERMISSION) values ("modify_group");
insert into Permission (PERMISSION) values ("add_permission");
insert into Permission (PERMISSION) values ("modify_permission");

d72 8
a79 7
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'add_user' and  UserRole.ROLENAME = 'root';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'modify_user' and  UserRole.ROLENAME = 'root';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'add_group' and  UserRole.ROLENAME = 'root';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'modify_group' and  UserRole.ROLENAME = 'root';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'add_permission' and  UserRole.ROLENAME = 'root';
insert into RolePermission (ROLEID,PERMISSIONID) select UserRole.ROLEID, Permission.PERMISSIONID from UserRole, Permission where Permission.PERMISSION = 'modify_permission' and  UserRole.ROLENAME = 'root';

@

