SQL Server roles required for operation of AbleCommerce
Posted: Tue Jun 30, 2009 1:04 pm
Does anybody know what SQL Server roles are required for AbleCommerce to operate (once it is installed, and the databases created)?
In the install readme, it states that Make sure the Permitted Roles are "public", "db_accessadmin", "db_securityadmin", "db_ddladmin", "db_datareader", "db_datawriter" for creating a database. But I could not find which roles are required for operation once the database is created. db_accessadmin, db_securityadmin, db_ddladmin roles are granted extremely powerful priviledges by SQL Server, so I don't feel good about simply granting these off the cuff to a publicly exposed web app under normal operation. I would assume that (and have no problem with) public, db_datareader, db_datawriter are required for operation to read and write to the database. But are the other three required once it is installed, and if so, why?
If nobody knows, I will have to just try and see if it works, but if anyone knows, I would appreciate the info! Thanks.
In the install readme, it states that Make sure the Permitted Roles are "public", "db_accessadmin", "db_securityadmin", "db_ddladmin", "db_datareader", "db_datawriter" for creating a database. But I could not find which roles are required for operation once the database is created. db_accessadmin, db_securityadmin, db_ddladmin roles are granted extremely powerful priviledges by SQL Server, so I don't feel good about simply granting these off the cuff to a publicly exposed web app under normal operation. I would assume that (and have no problem with) public, db_datareader, db_datawriter are required for operation to read and write to the database. But are the other three required once it is installed, and if so, why?
If nobody knows, I will have to just try and see if it works, but if anyone knows, I would appreciate the info! Thanks.