Interim DBSecurity deliver for December 1) Implement REVOKE ROLE RESTRICT. Previously dependent objects were not detected. Launchpad bug #1370739. 2) REVOKE ROLE with a list of grantees would fail for all grantees after the first. Now works for the entire list. Launchpad bug #1375494. 3) SHOWDDL ROLE now shows the GRANTED BY clause if the grantor is not DB__ROOT. Launchpad bug #1374586. 4) Component privilege names can now be reserved names. Launchpad bug 5) Added tests to catman1/test135 for privileges and RI constraints. 6) Added support for REVOKE RESTRICT for RI constraints. 7) Added support for USAGE privilege for sequence generator.
This code has been reviewed by the database security team but additional input is encouraged and welcomed.