Dear experts,
I cannot execute sql select from database view, below is my steps.
1. logon HANA studio with SYSTEM user, create 4 users USER_A, USER_B, USER_C and USER_D;
CREATE USER USER_A PASSWORD Initial1;
CREATE USER USER_B PASSWORD Initial1;
CREATE USER USER_C PASSWORD Initial1;
CREATE USER USER_D PASSWORD Initial1;
2. logon HANA studio with user USER_A and create table T_TEST in schema USER_A as following:
CREATE TABLE USER_A.T_TEST (ID INTEGER);
3. logon HANA studio with USER_A and grant select privilege on schema USER_A to USER_B,USER_C and USER_D;
GRANT SELECT ON SCHEMA USER_A TO USER_B;
GRANT SELECT ON SCHEMA USER_A TO USER_C;
GRANT SELECT ON SCHEMA USER_A TO USER_D;
4. logon HANA studio with USER_B and grant select and create any privilege on schema USER_B to USER_C and USER_D;
GRANT SELECT ON SCHEMA USER_B TO USER_C;
GRANT SELECT ON SCHEMA USER_B TO USER_D;
GRANT CREATE ANY ON SCHEMA USER_B TO USER_C;
GRANT CREATE ANY ON SCHEMA USER_B TO USER_D;
5. logon HANA studio with USER_C and create view V_TEST in schema USER_B as following:
CREATE VIEW USER_B.V_TEST AS SELECT * FROM USER_A.T_TEST;
6. logon HANA studio with USER_D and execute below SQL:
SELECT * FROM USER_B.V_TEST;
then I receive error says: "insufficient privilege"
Question: step 4 already assign select privilege on schema USER_B to USER_D, why step 6 still show error? However, USER_C can execute 'SELECT * FROM USER_B.V_TEST' successfully because USER_C is owner of USER_B.V_TEST. Will appreciate much if you can explain how the authorization check during user USER_D executing 'SELECT * FROM USER_B.V_TEST'
Regards,
Guoliang Zhou