Create User Control Access with Oracle Grant Security to users 1 Attachment(s) Create user Syntax : Code: create (user name) Object privileges assign the right to perform a particular operation on a specific object. Here are some examples of object privilege assignment: Code: grant select, insert on customer to fred, mary, joe; As you can see, the direct assignment of object privileges requires specific grants for every object to every user in the Oracle database. If you have a schema with 100 tables and 1,000 users, it would require 100,000 individual grant statements to assign security. Oracle System privileges System privileges cover many areas of access in a broad brush, with grants such as select any table. Examples of system privilege grants include: Code: grant create any cluster to customer_role; Oracle Role-based security Role security allows you to gather related grants into a collection. Since the role is a predefined collection of privileges that are grouped together, privileges are easier to assign to users, as in this example: Code: create role all_customer; However, unlike VPD security, it isn't possible to implement sophisticated rules for data access. With grants, users either have access to the table, or they do not. Design for Oracle grant security If you choose to implement grant security for your Oracle database, you must do some careful up-front planning to ensure that each role is carefully designed to cover access for a specific class of users without overlapping other roles. The steps for implementing grant security are:
|
All times are GMT +5. The time now is 07:20 PM. |
Powered by vBulletin® Version 3.8.2
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.