This file is indexed.

/var/lib/gnumed/server/sql/gmDemographics-Grants.sql is in gnumed-server 19.6-1.

This file is owned by root:root, with mode 0o644.

The actual contents of the file can be viewed below.

  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
-- Project: GNUmed
-- ===================================================================
-- $Source: /home/ncq/Projekte/cvs2git/vcs-mirror/gnumed/gnumed/server/sql/gmDemographics-Grants.sql,v $
-- $Revision: 1.19 $
-- license: GPL v2 or later
-- authors: Ian Haywood, Horst Herb, Karsten Hilbert, Richard Terry

-- ===================================================================
-- force terminate + exit(3) on errors if non-interactive
\set ON_ERROR_STOP 1

-- schema
grant usage on schema dem to group "gm-doctors";

grant select on
	dem.name_gender_map
to group "gm-public";

-- do not allow anyone other the gm-dbo to DELETE on identity ...
grant select, insert, update on
	dem.identity,
	dem.identity_pk_seq
to group "gm-doctors";

grant select on
	dem.staff,
	dem.staff_role
to group "gm-doctors";

GRANT SELECT, INSERT, UPDATE, DELETE ON
	dem.names,
	dem.names_id_seq,
	dem.urb,
	dem.urb_id_seq,
	dem.country,
	dem.country_id_seq,
	dem.state,
	dem.state_id_seq,
	dem.street,
	dem.street_id_seq,
	dem.address,
	dem.address_id_seq,
	dem.address_type,
	dem.address_type_id_seq,
	dem.enum_comm_types,
	dem.enum_ext_id_types,
	dem.enum_ext_id_types_pk_seq
	, dem.gender_label
	, dem.gender_label_pk_seq,
	dem.lnk_identity2ext_id,
	dem.lnk_identity2ext_id_id_seq,
	dem.lnk_person_org_address,
	dem.lnk_person_org_address_id_seq,
	dem.lnk_identity2comm,
	dem.lnk_identity2comm_id_seq,
	dem.relation_types,
	dem.lnk_person2relative,
	dem.lnk_person2relative_id_seq,
	dem.occupation,
	dem.occupation_id_seq,	
	dem.lnk_job2person,
	dem.lnk_job2person_id_seq,
	dem.org_category,
	dem.org,
	dem.org_id_seq,
	dem.lnk_org2comm,
	dem.lnk_org2comm_id_seq,
	dem.marital_status
TO GROUP "gm-doctors";

-- ===================================================================
-- $Log: gmDemographics-Grants.sql,v $
-- Revision 1.19  2006-06-18 13:26:12  ncq
-- - we *do* need select on dem.staff (so that foreign keys work ...)
--
-- Revision 1.18  2006/06/15 21:04:18  ncq
-- - actually, only gm-dbo should be able to edit dem.staff
--
-- Revision 1.17  2006/05/15 14:47:27  ncq
-- - move inbox grants to inbox dynamic script
-- - include message pk into inbox view
--
-- Revision 1.16  2006/01/22 18:12:09  ncq
-- - grants for provider inbox view
--
-- Revision 1.15  2006/01/07 17:53:32  ncq
-- - proper grants for provider inbox
-- - dynamic staff re provider inbox added
--
-- Revision 1.14  2006/01/06 10:12:02  ncq
-- - add missing grants
-- - add_table_for_audit() now in "audit" schema
-- - demographics now in "dem" schema
-- - add view v_inds4vaccine
-- - move staff_role from clinical into demographics
-- - put add_coded_term() into "clin" schema
-- - put German things into "de_de" schema
--
-- Revision 1.13  2005/04/14 16:58:18  ncq
-- - gender_label grants
--
-- Revision 1.12  2005/04/12 16:23:23  ncq
-- - grant on name_gender_map
--
-- Revision 1.11  2005/03/31 17:47:52  ncq
-- - missing grant
--
-- Revision 1.10  2005/02/13 14:39:31  ncq
-- - do not grant DELETE on identity to gm-doctors
--
-- Revision 1.9  2005/02/12 13:49:14  ncq
-- - identity.id -> identity.pk
-- - allow NULL for identity.fk_marital_status
-- - subsequent schema changes
--
-- Revision 1.8  2005/01/24 17:57:43  ncq
-- - cleanup
-- - Ian's enhancements to address and forms tables
--
-- Revision 1.7  2004/12/21 09:59:40  ncq
-- - comm_channel -> comm else too long on server < 7.3
--
-- Revision 1.6  2004/12/20 19:04:37  ncq
-- - fixes by Ian while overhauling the demographics API
--
-- Revision 1.5  2004/07/20 07:12:16  ncq
-- - RW queries on state (and country) need rights on the primary key sequence, too
--
-- Revision 1.4  2004/07/20 00:02:54  ihaywood
-- grant the user access to the "state" table
--
-- Revision 1.3  2004/07/17 20:57:53  ncq
-- - don't use user/_user workaround anymore as we dropped supporting
--   it (but we did NOT drop supporting readonly connections on > 7.3)
--
-- Revision 1.2  2004/04/07 18:42:10  ncq
-- - *comm_channel -> *comm_chan
--
-- Revision 1.1  2004/04/07 18:29:28  ncq
-- - split out grants
--