24.3.3 Handling upper-case and lower-case letters specified in user IDs, passwords, and roles

This section describes the handling of upper-case and lower-case letters specified in user IDs, passwords, and roles.

Organization of this subsection
(1) Differences in handling by HiRDB and the Directory Server
(2) Setting up case sensitivity in a Directory Server
(3) About HiRDB operation

(1) Differences in handling by HiRDB and the Directory Server

HiRDB does not differentiate between upper-case and lower-case letters in user IDs, passwords, and role names. HiRDB handles lower-case letters as upper-case letters. To differentiate between upper-case and lower-case letters, the string must be enclosed in quotation marks ("). For example, USERA, usera, userA, and USerA are all regarded as the character string USERA. In contrast, "USERA", "usera", "userA", and "USerA" are handled as different character strings.

For details with respect to the Sun Java System Directory Server, see Sun Java System Directory Server. Table 24-1 describes typical handling of upper-case and lower-case letters by the Directory Servers.

Table 24-1 Handling of upper-case and lower-case letters by the Directory Servers

ItemHandling by Directory Servers
User IDsDoes not differentiate between upper- and lower-case letters.
Example: USERA, usera, userA, and USerA are all regarded as the same character string.
PasswordsDifferentiates between upper- and lower-case letters.
Example: HiRDB, HIRDB, and hirdb are regarded as different passwords.
Role nameDoes not differentiate between upper- and lower-case letters.
Example: GROUPA, groupa, GrouPA, and gRoUpA are all regarded as the same character string.

(2) Setting up case sensitivity in a Directory Server

Table 24-2 provides guidelines for setting up case sensitivity in a Directory Server.

Table 24-2 Guidelines for setting up case sensitivity in a Directory Server

ConditionDifferentiation between upper- and lower-case letters
When Directory Server is used in HiRDB onlyWhen HiRDB differentiates between upper- and lower-case lettersSet Directory Server to differentiate between upper- and lower-case letters
When HiRDB does not differentiate between upper- and lower-case lettersSet Directory Server to not differentiate between upper- and lower-case letters
When Directory Server is used in multiple products including HiRDBDecide whether or not Directory Server is to differentiate between upper- and lower-case letters by considering other products as well. Before changing the handling of upper- and lower-case letters for the sake of HiRDB, ensure that other products will not be affected adversely by the change.
Notes on differentiation between upper- and lower-case letters
  1. Suppose that a user called USERA is registered in Directory Server. In this event, either USERA or usera can connect to HiRDB. However, if GRANT SCHEMA TO "usera" is specified when the schema definition privilege is granted, this SQL will be accepted. However, HiRDB will recognize that the schema definition privilege was granted to usera. Consequently, only usera can use the schema definition privilege, and USERA cannot. A similar situation occurs when DBA privilege or an access privilege is granted.
  2. If GRANT SELECT ON T1 TO GROUP "groupa" is specified when access privileges are granted to roles, all users belonging to groupa as well as users belonging to GROUPA will be granted table access privileges.

(3) About HiRDB operation

When specifying user IDs, passwords, or role names in HiRDB, Hitachi recommends specifying in a consistent manner (i.e., using only upper-case letters or enclosing letters in quotation marks).