+--*************************************************************************
+-- (c) Copyright 2002, De Winter Information Solutions
+-- This is free software; you can redistribute it and/or modify it under the
+-- terms of the GNU General Public License, see the file COPYING.
+--*************************************************************************/
--
-- Gnucomo database creation script.
--
-- Before running this script with 'psql -f', you should have your
-- DBA create the database and give access permissions.
--
+-- $Log: create.sql,v $
+-- Revision 1.24 2011-03-23 17:04:41 arjen
+-- Added a new group daemon and created additional permissions to the database.
+--
+-- Revision 1.23 2007/11/17 09:32:24 arjen
+-- Minor fixes to make created and upgraded databases equal.
+-- Cleanup of database destruction script.
+--
+-- Revision 1.22 2007/11/03 10:30:10 arjen
+-- Added the class definition for a filesystem parameter.
+-- New issue type: 'property out of range'.
+--
+-- Revision 1.21 2007/10/23 11:25:42 arjen
+-- Fixed the Failure and warning issues.
+--
+-- Revision 1.20 2007/01/11 13:47:35 arjen
+-- Log_adv and derived tables removed.
+-- Create notifications from log entries with pattern matching.
+--
+-- Revision 1.19 2005/06/04 07:09:47 arjen
+-- - Fixed field declaration for PostgreSQL 7.4
+-- - New tables: log_abuse, object_abuse and service_pattern
+-- - Added general service patterns in the service 'ANY'
+-- - Added new issue types.
+--
+-- Revision 1.18 2003/12/03 08:06:57 arjen
+-- Changed the type of log_adv_daemon_email.delay and log_adv_daemon_email.xdelay
+-- from time to interval. These delays can be more than 24 hours.
+--
+-- Revision 1.17 2003/09/02 12:49:47 arjen
+-- BUGFIX: Secondary indices on log_notification were unique.
+-- Additional information in the 'usr' table: 'display_name' and 'email'.
+-- Added new issues and services.
+--
+-- Revision 1.16 2003/08/16 14:29:02 arjen
+-- Fixed a few typos.
+--
+-- Revision 1.15 2003/08/05 07:43:24 arjen
+-- Added index to the history table.
+--
+-- Revision 1.14 2003/07/09 07:14:59 arjen
+-- New database tables: notification_check, notification_check_buffer,
+-- notification_check_line and object_statistics.
+--
+-- Revision 1.13 2003/03/29 08:27:05 arjen
+-- New columns in the table 'log_adv_daemon_email': size, pri, relay,
+-- status_details and dsn.
+-- Added several indices for the table 'log_adv_daemon_email'.
+--
+-- Revision 1.12 2003/02/21 08:38:38 arjen
+-- Added new table to the database: log_adv_daemon_email.
+--
+-- Revision 1.11 2003/02/16 08:24:38 arjen
+-- Added a new entry to the action table: Notification was displayed in the listing
+--
+-- Revision 1.10 2003/02/14 06:32:27 arjen
+-- Setup the groups and database permissions. The three groups
+-- are: view, ops and admin.
+-- Added a new entry to the action table.
+--
+-- Revision 1.9 2003/02/13 08:46:54 arjen
+-- Added log, notification and parameter counters to the 'object' table.
+-- Counting these things at the time a user interface needs them is
+-- too slow. Other programs, like gcm_daemon en gcm_input should prepare
+-- these counters for quick retrieval.
+--
+-- Revision 1.8 2003/02/08 07:36:41 arjen
+-- Added new table to the database : log_adv_daemon
+--
+-- Revision 1.7 2003/02/05 09:29:08 arjen
+-- Bug fix: action.statuscode was in upper case.
+--
+-- Revision 1.6 2003/01/20 07:29:48 arjen
+-- Added new tables to the database: parameter_class and parameter_notification
+--
+-- Revision 1.5 2003/01/18 08:46:48 arjen
+-- Added new records to the 'type_of_issue' table.
+-- Changed semantics of actionid 9 in the 'action' table.
+--
--
CREATE SEQUENCE "action_actionid_seq";
COPY "action" FROM stdin;
-1 Entry in the system NEW This indicates that a notification has been entered into the system.
-2 Display to user OPN The notification has been displayed to the user. It doesn't mean that the user actually read the notification, but he/she should be aware. For that reason we consider the notification to be OPEN
-3 Remarks added PEN Remarks have been added to the notification.
-4 Priority changed manually PEN The priority of the notification has been changed by the user.
-5 Priority changed automatically PEN The priority of the notification has been changed by the system. This can be the result of an action by the user or an automatical escalation.
-6 Action taken PEN An action has been taken.
-7 Assignment to user PEN The notification has been assigned to an user.
-8 More information or research needed. INV The notification is relevant and will be handled, however more information or research will be needed. For that reason the status has been altered to UNDER INVESTIGATION.
-9 Make output reference REF The automated output from an object was sent to gnucomo. The input has been identified as a valid reference for the future. For that reason the status is now REFERENCE
-10 Job output no longer valid CLS By making a newer job output a valid reference, this data has been obsoleted. Since it was a reference once the output isn't interesting anymore and thus the notification can be closed.
-11 Action taken - please verify CLS An action has been taken and things should have been resolved. Before the notification can be closed a verification has to be done. The new status is now VERIFY.
-12 Action not verified PEN A check has been done and the results were not good. New verification is needed. The status has been changed back to PEN.
-13 Action verified CLS A check has been done and the results were approved. The notification has been closed.
-15 SMS sent OPN An SMS has been sent.
-14 E-mail sent OPN An e-mail has been sent.
-16 Fax sent OPN An fax has been sent.
+1 Entry in the system new This indicates that a notification has been entered into the system.
+2 Display to user opn The notification has been displayed to the user. It doesn't mean that the user actually read the notification, but he/she should be aware. For that reason we consider the notification to be OPEN
+3 Remarks added pen Remarks have been added to the notification.
+4 Priority changed manually pen The priority of the notification has been changed by the user.
+5 Priority changed automatically pen The priority of the notification has been changed by the system. This can be the result of an action by the user or an automatical escalation.
+6 Action taken pen An action has been taken.
+7 Assignment to user pen The notification has been assigned to an user.
+8 More information or research needed. inv The notification is relevant and will be handled, however more information or research will be needed. For that reason the status has been altered to UNDER INVESTIGATION.
+9 Investigation completed pen Investigation has been done. Information is available to fix the problem.
+10 Job output no longer valid cls By making a newer job output a valid reference, this data has been obsoleted. Since it was a reference once the output isn't interesting anymore and thus the notification can be closed.
+11 Action taken - please verify cls An action has been taken and things should have been resolved. Before the notification can be closed a verification has to be done. The new status is now VERIFY.
+12 Action not verified pen A check has been done and the results were not good. New verification is needed. The status has been changed back to PEN.
+13 Action verified cls A check has been done and the results were approved. The notification has been closed.
+15 SMS sent opn An SMS has been sent.
+14 E-mail sent opn An e-mail has been sent.
+16 Fax sent opn An fax has been sent.
17 Log entries shown \N The log entries relevant to the notification have been shown.
-18 Notification closed CLS The notification has been closed.
-19 Notification reopend OPN The notification has been reopend.
+18 Notification closed cls The notification has been closed.
+19 Notification reopend opn The notification has been reopend.
+20 Redisplayed to user \N The notification has been presented to a user. This is not the first time
+21 Displayed in list \N The notification has been presented in a list with other notifications.
\.
CREATE UNIQUE INDEX action_actionid_key ON "action" USING btree (actionid);
CREATE INDEX act_statuscode ON "action" USING btree (statuscode);
-SELECT setval ('"action_actionid_seq"', 19, true);
+SELECT setval ('"action_actionid_seq"', 21, true);
--
--
--
--
+CREATE TABLE "db_value"
+(
+ "setting" text,
+ "setting_value" text
+);
+
+
+COPY "db_value" FROM stdin;
+db_version 53
+gcm_daemon_version 5
+log_processing 0
+log_servicecheck 0
+last_notification 0
+\.
+
+--
+--
+
+CREATE TABLE "history"
+(
+ paramid bigint,
+ modified timestamp,
+ change_nature text, -- CREATED, MODIFIED or REMOVED
+ changed_property text,
+ new_value text,
+ remark text
+
+);
+
+CREATE INDEX history_pid_mod ON history(paramid, modified);
+
+--
+--
+
CREATE SEQUENCE "log_logid_seq";
CREATE TABLE "log"
"servicecode" text,
"object_timestamp" timestamp with time zone,
"timestamp" timestamp with time zone,
- "rawdata" text
+ "rawdata" text,
+ "processed" boolean DEFAULT false,
+ "recognized" boolean DEFAULT false
);
CREATE UNIQUE INDEX log_logid_key ON log USING btree (logid);
CREATE INDEX log_timestamp ON log USING btree (object_timestamp);
+CREATE INDEX log_processed ON log USING btree (processed);
+
SELECT setval ('"log_logid_seq"', 1, false);
---
---
-CREATE TABLE "log_adv"
+CREATE TABLE log_abuse
(
- "logid" bigint,
- "source_ip" inet,
- "destination_ip" inet,
- "mac_address" macaddr,
- "packetlength" integer,
- "protocol" text,
- "source_port" integer,
- "destination_port" integer,
- "messageid" text,
- "system_username" text,
- "networkdevice" text
+ logid bigint,
+ objectid bigint,
+ source inet
);
-CREATE INDEX loa_logid ON log_adv USING btree (logid);
-
-CREATE INDEX loa_source_ip ON log_adv USING btree (source_ip);
-
-CREATE INDEX loa_destination_ip ON log_adv USING btree (destination_ip);
-
-CREATE INDEX loa_mac_address ON log_adv USING btree (mac_address);
-
-CREATE INDEX loa_packetlength ON log_adv USING btree (packetlength);
-
-CREATE INDEX loa_protocol ON log_adv USING btree (protocol);
-
-CREATE INDEX loa_source_port ON log_adv USING btree (source_port);
-
-CREATE INDEX loa_destination_port ON log_adv USING btree (destination_port);
-
-CREATE INDEX loa_messageid ON log_adv USING btree (messageid);
-
-CREATE INDEX loa_system_username ON log_adv USING btree (system_username);
-
-CREATE INDEX loa_networkdevice ON log_adv USING btree (networkdevice);
-
+CREATE INDEX log_ab_src ON log_abuse (source, objectid);
+CREATE UNIQUE INDEX log_ab_log ON log_abuse (logid);
--
--
CREATE UNIQUE INDEX lon_pk ON log_notification USING btree (notificationid, logid);
-CREATE UNIQUE INDEX lon_notificationid ON log_notification USING btree (notificationid);
+CREATE INDEX lon_notificationid ON log_notification USING btree (notificationid);
-CREATE UNIQUE INDEX lon_logid ON log_notification USING btree (logid);
+CREATE INDEX lon_logid ON log_notification USING btree (logid);
--
--
"notificationid" bigint DEFAULT
nextval('"notification_notificationid_seq"'::text) NOT NULL,
"objectid" bigint,
- "type_of_notificationid" bigint,
+ "type_of_issueid" bigint,
"timestamp" timestamp with time zone,
"statuscode" character varying(3),
"priority" integer,
CREATE INDEX not_objectid ON notification USING btree (objectid);
-CREATE INDEX not_type_of_notificationid ON notification USING btree (type_of_notificationid);
+CREATE INDEX not_type_of_issueid ON notification USING btree (type_of_issueid);
CREATE INDEX not_timestamp ON notification USING btree ("timestamp");
--
--
+CREATE SEQUENCE checkid_seq;
+
+CREATE TABLE notification_check
+(
+ checkid bigint DEFAULT nextval('checkid_seq'::text) NOT NULL,
+ checkname TEXT,
+ description TEXT,
+ time_between_executions INTERVAL,
+ last_execution timestamp,
+ execution_counter BIGINT,
+ notificationcounter BIGINT,
+ decreasinglist BOOLEAN default false,
+ type_of_issueid BIGINT
+);
+
+CREATE UNIQUE INDEX not_check_checkid ON notification_check (checkid);
+
+CREATE UNIQUE INDEX not_check_checkname ON notification_check (checkname);
+
+CREATE INDEX not_check_check_lastexec ON notification_check (last_execution);
+
+--
+--
+
+CREATE TABLE notification_check_buffer
+(
+ checkid BIGINT,
+ sortorder INTEGER,
+ pid INTEGER,
+ logid bigint
+);
+
+CREATE INDEX notcheckbuffer_checkid ON notification_check_buffer(checkid);
+
+CREATE INDEX notcheckbuffer_sort ON notification_check_buffer(sortorder);
+
+CREATE INDEX notcheckbuffer_pid ON notification_check_buffer(pid);
+
+CREATE INDEX notcheckbuffer_logid ON notification_check_buffer(logid);
+
+--
+--
+
+CREATE SEQUENCE checklineid_seq;
+
+CREATE TABLE notification_check_line
+(
+ checklineid BIGINT DEFAULT nextval('checklineid_seq'::text) NOT NULL,
+ checkid BIGINT,
+ sortorder INTEGER,
+ last_logid BIGINT default 0,
+ historicboundary INTERVAL default '0',
+ use_logid BOOLEAN default false,
+ sql_query TEXT
+);
+
+CREATE UNIQUE INDEX notcheckline_checklineid ON notification_check_line (checklineid);
+
+CREATE INDEX notcheckline_checkid ON notification_check_line (checkid);
+
+CREATE INDEX notcheckline_sort ON notification_check_line (sortorder);
+
+CREATE INDEX notcheckline_check_sort ON notification_check_line (checkid, sortorder);
+
+--
+--
+
CREATE SEQUENCE "object_objectid_seq";
CREATE TABLE "object"
"object_owner" text,
"physical_location" text,
"timezone" text,
- "remark" text
+ "remark" text,
+ "os" text,
+ "os_version" text,
+ "log_count" bigint,
+ "notification_count" bigint,
+ "parameter_count" bigint
);
CREATE UNIQUE INDEX object_objectid_key ON object USING btree (objectid);
CREATE INDEX obj_mail_from ON object USING btree (mail_from);
+CREATE INDEX os ON object (os);
+
+CREATE INDEX os_version ON object (os, os_version);
+
SELECT setval ('"object_objectid_seq"', 1, false);
--
--
+CREATE TABLE "object_abuse"
+(
+ objectid bigint,
+ source inet,
+ nr_abuses integer,
+ status text,
+ last_change timestamp,
+
+ primary key (objectid, source)
+);
+
+--
+--
+
CREATE TABLE "object_issue"
(
"objectid" bigint,
- "type_of_notificationid" bigint,
+ "type_of_issueid" bigint,
"default_priority" integer,
"escalation" boolean,
"escalation_time" time without time zone,
"adjust_setting" text
);
-CREATE UNIQUE INDEX obj_pk ON object_issue USING btree (objectid, type_of_notificationid);
+CREATE UNIQUE INDEX obj_pk ON object_issue USING btree (objectid, type_of_issueid);
CREATE INDEX obj_objectid ON object_issue USING btree (objectid);
-CREATE UNIQUE INDEX obj_type_of_notificationid ON object_issue USING btree (type_of_notificationid);
+CREATE UNIQUE INDEX obj_type_of_notificationid ON object_issue USING btree (type_of_issueid);
--
--
--
--
-CREATE TABLE "object_system_user"
+CREATE TABLE object_statistics
(
- "objectid" bigint,
- "system_username" text,
- "can_login" boolean,
- "can_be_root" boolean
-);
-
-CREATE UNIQUE INDEX osu_pk ON object_system_user USING btree (objectid, system_username);
+ objectid bigint,
+ statname text,
+ statvalue double precision,
-CREATE INDEX osu_objectid ON object_system_user USING btree (objectid);
+ primary key (objectid, statname)
+);
-CREATE INDEX osu_system_username ON object_system_user USING btree (system_username);
+CREATE INDEX obj_stat_objid ON object_statistics USING btree (objectid);
--
--
--
--
+CREATE SEQUENCE "paramid_seq";
+
+CREATE TABLE "parameter"
+(
+ "paramid" bigint DEFAULT nextval('"paramid_seq"'::text) NOT NULL,
+ "objectid" bigint,
+ "name" text,
+ "class" text,
+ "description" text,
+
+ primary key (paramid)
+);
+
+CREATE UNIQUE INDEX param_obj_name ON parameter USING btree (objectid, name, class);
+
+SELECT setval ('"paramid_seq"', 1, true);
+
+--
+--
+
+CREATE TABLE "parameter_class"
+(
+ "name" text, -- Name of the class: see parameter.class
+ "property_name" text,
+ "description" text,
+ "property_type" text, -- STATIC or DYNAMIC
+ "min" float, -- Default minimum value
+ "max" float, -- Default maximum value
+ "notify" boolean, -- Notify if something changes ?
+
+ primary key (name, property_name)
+);
+
+INSERT INTO parameter_class (name, property_name, description, property_type, notify)
+ VALUES ('package', 'version', 'The installed version of the package', 'STATIC', 't');
+
+INSERT INTO parameter_class (name, property_name, description, property_type, notify)
+ VALUES ('filesystem', 'device', 'Volume on which the filesystem resides', 'STATIC', 't');
+INSERT INTO parameter_class (name, property_name, description, property_type, notify)
+ VALUES ('filesystem', 'size', 'Total size in kilobytes', 'STATIC', 't');
+INSERT INTO parameter_class (name, property_name, description, property_type, min, max, notify)
+ VALUES ('filesystem', 'used', 'Number of kilobytes used', 'DYNAMIC', 0, 1000000, 't');
+INSERT INTO parameter_class (name, property_name, description, property_type, min, max, notify)
+ VALUES ('filesystem', 'available', 'Number of kilobytes available', 'DYNAMIC', 1000, 1000000, 't');
+INSERT INTO parameter_class (name, property_name, description, property_type, notify)
+ VALUES ('filesystem', 'Inodes', 'Total number of i-nodes', 'STATIC', 't');
+INSERT INTO parameter_class (name, property_name, description, property_type, min, max, notify)
+ VALUES ('filesystem', 'Iused', 'Number of i-nodes used', 'DYNAMIC', 0, 1000000, 't');
+INSERT INTO parameter_class (name, property_name, description, property_type, min, max, notify)
+ VALUES ('filesystem', 'Ifree', 'Number of i-nodes available', 'DYNAMIC', 1000, 1000000, 't');
+
+--
+--
+
+CREATE TABLE "parameter_notification"
+(
+ "notificationid" bigint,
+ "paramid" bigint,
+
+ primary key (notificationid, paramid)
+);
+
+--
+--
+
CREATE TABLE "priority"
(
"priority" integer,
--
--
+CREATE TABLE "property"
+(
+ paramid bigint,
+ name text,
+ value text,
+ type text, -- STATIC or DYNAMIC
+ min float,
+ max float,
+
+ primary key (paramid, name)
+);
+
+--
+--
+
CREATE TABLE "service"
(
"servicecode" text,
"max_priority" integer
);
+COPY "service" FROM stdin;
+httpd httpd 1 5
+imap imap 1 5
+imapd imapd 1 5
+kernel kernel 1 5
+sshd sshd 1 5
+su su 1 5
+syslogd syslogd 1 5
+CROND Cron Daemon 1 5
+gnucomo Gnucomo Daemon 1 5
+sendmail Mail Transport Agent 1 5
+dhcpd DHCP Daemon 1 5
+rpc NFS Services 1 5
+named DNS Services 1 5
+xinetd Internet Daemon 1 5
+ipop Post Office Protocol 1 5
+mgetty Serial port login and fax 1 5
+login User login 1 5
+pam Authentication modules 1 5
+modprobe Kernel modules 1 5
+\.
+
CREATE UNIQUE INDEX ser_pk ON service USING btree (servicecode);
CREATE UNIQUE INDEX ser_servicename ON service USING btree (servicename);
---
+CREATE TABLE service_pattern
+(
+ service text,
+ rank int,
+ pattern text,
+ action text,
+ argument text,
+
+ primary key (service, rank)
+);
+
+INSERT INTO service_pattern VALUES ('ANY', 999999, '.+', 'notify', 'unmatched log');
+INSERT INTO service_pattern VALUES ('ANY', 999990, '[Ee][Rr][Rr][Oo][Rr]', 'notify', 'Error detected');
+INSERT INTO service_pattern VALUES ('ANY', 999991, '[Ff][Aa][Ii][Ll]', 'notify', 'Failure detected');
+INSERT INTO service_pattern VALUES ('ANY', 999992, '[Ww][Aa][Rr][Nn]', 'notify', 'Warning detected');
+
--
CREATE TABLE "status"
--
--
+CREATE TABLE supported_os
+(
+ os_name text,
+ remarks text
+);
+
+CREATE UNIQUE INDEX spp_os ON supported_os (os_name);
+
+--
+--
+
CREATE SEQUENCE "type_of_issue_type_of_issue_seq";
CREATE TABLE "type_of_issue"
"name" text,
"suggested_priority" text,
"description" text,
- "active" boolean
+ "active" boolean,
+ automated_check boolean,
+ alert_level int,
+ last_run timestamp,
+ recheck_interval timestamp
);
COPY "type_of_issue" FROM stdin;
-1 manual entry 4 A manual entry of a notification t
+1 manual entry 4 A manual entry of a notification t \N \N \N \N
+2 parameter created 3 A new parameter was created t \N \N \N \N
+3 property modified 3 The STATIC property of a parameter was modified t \N \N \N \N
+4 parameter removed 3 A parameter was removed t \N \N \N \N
+5 service unknown 5 Service in log entry is unknown t \N \N \N \N
+6 service not used 5 Service in log entry is not used t \N \N \N \N
+7 abuses exceeded 5 Abuse treshold exceeded from an IP address t \N \N \N \N
+8 unmatched log 5 Log entries could not be matched t \N \N \N \N
+9 Error detected 5 An Error is reported in the log t \N \N \N \N
+10 Failure detected 5 A Failure is reported in the log t \N \N \N \N
+11 Warning detected 3 A Warning is reported in the log t \N \N \N \N
+12 property out of range 5 The DYNAMIC property of a parameter is out of range t \N \N \N \N
\.
CREATE UNIQUE INDEX type_of_issue_type_of_issue_key ON type_of_issue USING btree (type_of_issueid);
CREATE INDEX toi_active ON type_of_issue USING btree (active);
-SELECT setval ('"type_of_issue_type_of_issue_seq"', 1, true);
+SELECT setval ('"type_of_issue_type_of_issue_seq"', 12, true);
--
--
-CREATE SEQUENCE "unprocessed_l_unprocessedid_seq";
-
-CREATE TABLE "unprocessed_log"
+CREATE TABLE "usr"
(
- "unprocessedid" bigint DEFAULT
- nextval('"unprocessed_l_unprocessedid_seq"'::text) NOT NULL,
- "objectid" bigint,
- "servicecode" text
-);
-
-CREATE UNIQUE INDEX unprocessed_l_unprocessedid_key ON unprocessed_log USING btree (unprocessedid);
-
-SELECT setval ('"unprocessed_l_unprocessedid_seq"', 1, false);
-
---
---
-
-CREATE TABLE "user_gnucomo"
-(
- "username" text,
- "password" text,
+ "username" text NOT NULL,
"active_sessionid" bigint,
"account_active" boolean,
- "security_level" integer
+ "security_level" integer,
+ display_name text,
+ email text
);
-CREATE UNIQUE INDEX usr_pk ON user_gnucomo USING btree (username);
-
-CREATE INDEX usr_active_sessionid ON user_gnucomo USING btree (active_sessionid);
-
-
+CREATE UNIQUE INDEX usr_username ON usr USING btree (username);
+
+CREATE UNIQUE INDEX usr_active_sessionid ON usr USING btree (active_sessionid);
+
+CREATE INDEX usr_account_active ON usr USING btree (account_active);
+
+CREATE INDEX usr_security_level ON usr USING btree (security_level);
+
+--
+-- Set up user groups and grant permissions in the proper places.
+
+CREATE GROUP view;
+CREATE GROUP ops;
+CREATE GROUP admin;
+CREATE GROUP daemon;
+
+-- The default user 'gnucomo' used by the daemons
+
+CREATE ROLE gnucomo LOGIN PASSWORD 'gnucomo' IN GROUP daemon;
+
+GRANT SELECT ON action TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON action_user TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON db_value TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON db_value TO GROUP daemon;
+GRANT SELECT ON history TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON history TO GROUP daemon;
+GRANT SELECT ON log TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON log TO GROUP daemon;
+GRANT SELECT ON log_notification TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON notification TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON notification TO GROUP daemon;
+GRANT SELECT ON object TO GROUP view, GROUP ops, GROUP admin, GROUP daemon;
+GRANT SELECT ON object_abuse TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON object_abuse TO GROUP daemon;
+GRANT SELECT ON object_issue TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON object_priority TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON object_service TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON object_service TO GROUP daemon;
+GRANT SELECT ON object_statistics TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON object_statistics TO GROUP daemon;
+GRANT SELECT ON object_user TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON object_user TO GROUP daemon;
+GRANT SELECT ON parameter TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON parameter TO GROUP daemon;
+GRANT SELECT ON parameter_class TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON parameter_class TO GROUP daemon;
+GRANT SELECT ON parameter_notification TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON parameter_notification TO GROUP daemon;
+GRANT SELECT ON priority TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON property TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON property TO GROUP daemon;
+GRANT SELECT ON service TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON service TO GROUP daemon;
+GRANT SELECT ON status TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON supported_os TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON type_of_issue TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON type_of_issue TO GROUP daemon;
+GRANT SELECT ON usr TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON usr TO GROUP daemon;
+
+GRANT INSERT ON action_user TO GROUP ops, GROUP admin;
+GRANT INSERT ON action_user TO GROUP daemon;
+GRANT DELETE ON action_user TO GROUP daemon;
+GRANT UPDATE ON action_user_actionstepid_seq TO GROUP ops, GROUP admin;
+GRANT UPDATE ON action_user_actionstepid_seq TO GROUP daemon;
+GRANT UPDATE ON db_value TO GROUP daemon;
+GRANT INSERT ON log TO GROUP daemon;
+GRANT DELETE ON log TO GROUP daemon;
+GRANT UPDATE ON log_logid_seq TO GROUP daemon;
+GRANT INSERT ON log_notification TO GROUP daemon;
+GRANT SELECT ON log_notification TO GROUP daemon;
+GRANT DELETE ON log_notification TO GROUP daemon;
+GRANT UPDATE ON notification TO GROUP ops, GROUP admin;
+GRANT INSERT ON notification TO GROUP daemon;
+GRANT DELETE ON notification TO GROUP daemon;
+GRANT INSERT ON object TO GROUP admin;
+GRANT UPDATE ON object TO GROUP ops, GROUP admin;
+GRANT UPDATE ON object TO GROUP daemon;
+GRANT DELETE ON object TO GROUP admin;
+GRANT INSERT ON object_abuse TO GROUP admin;
+GRANT UPDATE ON object_abuse TO GROUP ops, GROUP admin;
+GRANT DELETE ON object_abuse TO GROUP admin;
+GRANT INSERT ON log_abuse TO GROUP daemon;
+GRANT INSERT ON object_abuse TO GROUP daemon;
+GRANT UPDATE ON object_abuse TO GROUP daemon;
+GRANT INSERT ON object_statistics TO GROUP daemon;
+GRANT UPDATE ON object_statistics TO GROUP daemon;
+
+GRANT INSERT ON parameter_notification TO GROUP daemon;
+GRANT INSERT ON parameter TO GROUP daemon;
+GRANT UPDATE ON paramid_seq TO GROUP daemon;
+GRANT UPDATE ON notification_notificationid_seq TO GROUP daemon;
+GRANT SELECT ON notification_notificationid_seq TO GROUP daemon;
+GRANT INSERT ON property TO GROUP daemon;
+GRANT UPDATE ON property TO GROUP daemon;
+GRANT INSERT ON property TO GROUP admin;
+GRANT UPDATE ON property TO GROUP admin;
+GRANT INSERT ON history TO GROUP daemon;
+GRANT INSERT ON parameter_class TO GROUP admin;
+GRANT UPDATE ON parameter_class TO GROUP admin;
+GRANT DELETE ON parameter_class TO GROUP admin;
+
+GRANT UPDATE ON usr TO GROUP view, GROUP ops, GROUP admin;
+GRANT INSERT ON usr TO GROUP admin;
+GRANT DELETE ON usr TO GROUP admin;
+GRANT SELECT ON service_pattern TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON service_pattern TO GROUP daemon;
+GRANT INSERT ON service_pattern TO GROUP admin;
+GRANT UPDATE ON service_pattern TO GROUP ops, GROUP admin;
+GRANT DELETE ON service_pattern TO GROUP admin;
+GRANT SELECT ON log_abuse TO GROUP view, GROUP ops, GROUP admin;
+GRANT SELECT ON log_abuse TO GROUP daemon;
+GRANT DELETE ON log_abuse TO GROUP daemon;
projects / gnucomo.git / blobdiff