Browse Source

Add SQL server security note

Signed-off-by: Pekka Helenius <fincer89@hotmail.com>
v0.0.4-alpha
Pekka Helenius 4 years ago
parent
commit
b3526137f8
1 changed files with 19 additions and 0 deletions
  1. +19
    -0
      bookstore/src/main/java/com/fjordtek/bookstore/model/book/BookHash.java

+ 19
- 0
bookstore/src/main/java/com/fjordtek/bookstore/model/book/BookHash.java View File

@ -80,6 +80,25 @@ public class BookHash {
////////////////////
// Attribute setters
/*
* Ignore UPDATE queries in Jakarta Persistence API context.
*
* Security note:
*
* To actually prevent UPDATE queries, bookstore database user must have
* permission denial for UPDATE queries for BOOK_HASH table in SQL database
* internal security policy.
*
* SQL server admin // Remove UPDATE permission:
*
* REVOKE UPDATE on <database_name>.BOOK_HASH FROM '<bookstore_user>'@'sql-server_domain-name';
*
* SQL server admin // Confirm changes:
*
* SHOW GRANTS FOR '<bookstore_user>'@'sql-server_domain-name';
* If needed, contact your SQL server admin to configure this policy.
*/
@Column(
name = "hash_id",
unique = true,


Loading…
Cancel
Save