Everyone group authorization for DB users

Topics: NetSqlAzMan Core
Nov 7, 2010 at 4:19 PM

Is there a way to authorize an item for every DB user (or all users)? The group "Everyone" works only for Windows users.

I digged into source codes a little and found two overloaded methods called internalCheckAccess in the SqlAzManStorage class. These methods call DirectCheckAccess stored procedure which does the check itself against authorizations in the database. The overload for Windows identity passes all Windows groups to the SP and indeed, among these groups is also the "Everyone" group with well-known SID S-1-1-0. It looks that it would be enough to just modify the IAzManDBUser overload to always pass this group. Is this a good approach or is there some other recommendation which does not involve modifying source codes?

Nov 9, 2010 at 7:08 AM

I have never tried such a thing then I could not tell.

I would say that the code change is the only way.

__________________________________
Andrea Ferendeles
NetSqlAzMan Project Coordinator
E-mail aferende@hotmail.com Web http://netsqlazman.codeplex.com