Database design

Image RemovedImage Added

Role table
- Id
- Name
- Comment
  - Role name could be admin, developer, user, etc.
Role_User_Group table
- Id
- Role_id
- User_name
- Group_name
- Comment
  - The information of user and group comes from Linux or LDAP etc.
  - Only one of user name and group name is set. If user name is set and leave group name empty, it means that this user has this rule. If group name is set and leave user name empty, it means that all users in this group has this rule.
  - One user/group could have one or multiple roles.
Privilege table
- Id
- Role_id
- Resource_id
- Resource_type
- Action_type
- Comment
  - Resource type could be the existing resource table, such as connector, link, job, submission, etc.
  - Resource type could be added in the future, say config etc.
  - If resource_id is 0, it means all resource of this type, ie. resource_id=0 and resource_type=link means all links.
  - Use resource id and resource type to identify the resource, ie. resource_id=1 and resource_type=link means the resource of “select * from link where id =1”.
  - Action type could be read, create, update, delete, use etc.
Accordingly, MRole, MRoleUserGroup and MPrivilege classes are added into package org.apache.sqoop.model.

...

Versions Compared