doctrine2 - Symfony - Multiple Database Users - Principle of Least Privilege -


i symfony noob , i'm on uphill of learning curve @ moment, i'm still trucking along - we've been there @ point.

i've read several resources in designing application , 1 of them principle of least privilege in information security:

in information security, computer science, , other fields, principle of least privilege, known principle of minimal privilege or least privilege, requires in particular abstraction layer of computing environment, every module (such process, user or program on basis of layer considering) must able access such information , resources necessary legitimate purpose.

with in mind decided require 3 distinct database users access database:

  1. read only
  2. volatile - insert, update, delete
  3. admin - lock, backup, alter

with symfony seems me it's designed single database user in mind , although appears it's possible use multiple users/connections appears not recommended standard practice:

using multiple entity managers pretty easy, more advanced , not required. sure need multiple entity managers before adding in layer of complexity.

my questions are:

  1. am making more complicated needs be?
  2. does using single database user make symfony less secure?
  3. is article linked correct way achieve least privilege principle in symfony?

i think you're making more complicated needs be.

in cases you're concerned user's access or privileges domain object. times can approach level of security using simpler means of identifying ownership @ application level (e.g. checking see if associated user object in fact 1 logged in , trying access it), or can apply more complex model of ownership , permissions via access control list.

as whether using single-user makes database more-or-less secure. depends on architecture , you're trying do. however, think inevitably create design , architectural challenges beyond you're experiencing.

in experience web applications want limit privileges of database user associated application, user should have read-and-write privileges (e.g. combination of read-only , volatile users listed above in question). may had secondary database user (externalized application logic) directly usable against database administrative actions.

below, nico makes observation, suggesting looking role based security, allows define different roles (e.g. anonymous, user, admin, etc.) can use perform rudimentary logic around can in application.

for example: anonymous users can view data cannot create or edit it. authenticated users user role can view, create, , edit content, may further restricted in application being able edit content own. finally, user admin role has unrestricted access view, create, , edit content.

the above example using single database user on backend, associated database connection you've configured.

in addition that, mentioned above , discussed below, can have database user. largely depends on whether want have symfony application have full-or-partial rights. if wanted have user in role of system admin dbas create user , attach database table space or schema, user is not associated symfony application. serves power-user can run external application manage database without being restricted possibly restricted privileges on application database user.


Comments

Post a Comment

Popular posts from this blog

Android layout hidden on keyboard show -

i have strange problem layout. when tap on edittext , keyboard shown edittext stay on bottom , when tap on to hide keyboard , keyboard hides , edittext go should when want input text. when tap again, keyboard shown , edittext goes down behind keyboard... <relativelayout android:layout_width="match_parent" android:layout_height="match_parent" > <scrollview android:layout_width="match_parent" android:layout_height="fill_parent" android:above="@+id/rl_commands"> <textview android:layout_width="match_parent" android:layout_height="wrap_content"/> </scrollview> <relativelayout android:layout_width="match_parent android:layout_height="24dp" android:id="@+id/rl_commands" android:alignparentbottom="true">
Read more

google app engine - 403 Forbidden POST - Flask WTForms -

i have flask application running on google app engine. trying submit form built using wtform , keep getting following error. 403 forbidden: don't have permission access requested resource. either read-protected or not readable server. location.html (part of code) <form method=post action="/home/location"> .... <button type="submit" class="btn btn-primary" value="submit"> directions </button> </form> main.py @app.route('/home/location', methods=['post', 'get']) def location(): form = cfcdirections.direction(request.form) print(request.method) if request.method == 'post' , form.validate(): print("after if") directions = cfcdirections() street_no = directions.no street = directions.street suburb = directions.suburb postcode = directions.postcode
Read more

c - Why would PK11_GenerateRandom() return an error -8023? -

i looking through internet trying find source of pk11_generaterandom() function see why function fail. have program uses function when moved new flavor of linux, fails after forking ( fork() ) since not believe there problem nss, suspect doing incorrectly disregarded in older versions of linux new 1 there issue. the openssl package same on 'good' , 'bad' server: openssl 0.9.8e-fips-rhel5 01 jul nss rpm differs though. 'good' has nss-3.12.2.0-2.el5 and bas has version nss-3.15.3-4.el5_10 the 'good' server uses quite obsolete linux: linux 2.6.18-128.el5 #1 smp wed jan 21 08:45:05 est 2009 x86_64 x86_64 x86_64 gnu/linux enterprise linux enterprise linux server release 5.3 (carthage) red hat enterprise linux server release 5.3 (tikanga) the 'bad' server newer: linux bad 2.6.18-371.4.1.el5 #1 smp wed jan 29 11:05:49 pst 2014 x86_64 x86_64 x86_64 gnu/linux oracle linux server release 5.10 red hat enterprise linux server release
Read more