Skip to Content

SAP HANA XSA 2.0 SPS 03: ​Error: com.sap.hana.di.role: "DROP" after update

Hi,

has something changed within the .hdbroles definition or requirements in the new SPS 03?

I've the issue that I get in different projects an error for invalid privileges, but we are using them since a while.

I removed "DROP", but after that came the next error for "INDEX".

Error: com.sap.hana.di.role: "DROP": invalid privilege for the "AMP.db::XXX.XXX" object of type "TABLE" [8254522]

.hdbrole

		"object_privileges": [{
				"name": "AMP.db::XXX.XXX",
				"type": "TABLE",
				"privileges": ["SELECT", "UPDATE", "DROP", "REFERENCES", "INDEX", "DELETE", "INSERT", "ALTER", "TRIGGER"]
			}
		]
Add comment
10|10000 characters needed characters exceeded

  • Hi Dirk,

    Did you find the solution for this? When we upgraded to SP3, we see that we cannot list "DROP" and "TRIGGER" in the privileges. We also see that we run into the build issues which seem to be stemming from the runtime objects not being dropped before the new design time changes can be activated.

    Regards,

    Jay

  • Get RSS Feed

2 Answers

  • Apr 19 at 02:21 PM

    This is within a container so really no user but the container object owner should have such DDL features such as DROP. So it seems to me that such restrictions make sense.

    Add comment
    10|10000 characters needed characters exceeded

    • It seems that none of the objects can be dropped from within a container. So is it the only way to use the direct db connection option with enough privileges to drop objects?

      Sometimes you need to create some objects for testing purposes but you can't drop them later.

  • Oct 20 at 04:12 AM

    Error executing ALTER_REMOTE_SUBSCRIPTION_RESET with command: 'ALTER REMOTE SUBSCRIPTION RS" RESET'.

    Because we can't assign DROP to a role., the runtime objects like triggers created while realtime replication cant be dropped incase we run into issues like above

    Any suggestions?

    Add comment
    10|10000 characters needed characters exceeded