Skip to Content
0

SAP HANA XSA 2.0 SPS 03: ​Error: com.sap.hana.di.role: "DROP" after update

Apr 19 at 10:02 AM

116

avatar image

Hi,

has something changed within the .hdbroles definition or requirements in the new SPS 03?

I've the issue that I get in different projects an error for invalid privileges, but we are using them since a while.

I removed "DROP", but after that came the next error for "INDEX".

Error: com.sap.hana.di.role: "DROP": invalid privilege for the "AMP.db::XXX.XXX" object of type "TABLE" [8254522]

.hdbrole

		"object_privileges": [{
				"name": "AMP.db::XXX.XXX",
				"type": "TABLE",
				"privileges": ["SELECT", "UPDATE", "DROP", "REFERENCES", "INDEX", "DELETE", "INSERT", "ALTER", "TRIGGER"]
			}
		]
10 |10000 characters needed characters left characters exceeded
* Please Login or Register to Answer, Follow or Comment.

1 Answer

Thomas Jung
Apr 19 at 02:21 PM
0

This is within a container so really no user but the container object owner should have such DDL features such as DROP. So it seems to me that such restrictions make sense.

Show 3 Share
10 |10000 characters needed characters left characters exceeded

I'm agree with you, but could not find any hint in the docu.

Insert works so far, and that is enough for us.

0
Former Member

Am I missing something? The documentation for object_privileges contains the following:

The following object types are supported in the specification of object privileges:

  • Basic SQL types

    INDEX, FUNCTION, PROCEDURE, SYNONYM, TABLE, TRIGGER, VIEW

This is directly from the SPS 03 developer guide (https://help.sap.com/viewer/4505d0bdaf4948449b7f7379d24d0f0d/2.0.03/en-US/625d7733c30b4666b4a522d7fa68a550.html)

0

Right. Those types are supported but not necessary all of the privileges.

0