Clarity requires the VIEW SERVER STATE permission with MS SQL, which creates a security issue for some sites. Why is this required?
This is "as designed" and required for proper Clarity functionality, as there are areas of the product that require its use. The following are some of the areas that require its use.
- Our cmn_dblocks_sp, which is used for monitoring deadlocking scenarios (this is a diagnostic stored procedure).
- Our financial GL transaction posting to prevent data corruption due to multiple concurrent executions.
- Our financial Post to WIP function to prevent data corruption due to multiple concurrent executions.
- Our configuration code reads this to determine if this permission is set and will log this to the logs if it is not set. This configuration is
accessible and available for developers to use for future features.