Home » RDBMS Server » Security » Application security
Application security [message #64500] Wed, 02 February 2005 16:18 Go to next message
Asif Khan
Messages: 9
Registered: November 2000
Junior Member
Hi All,

We have a scenerio where we are managing all security with respect to database roles.

We do not want to assign any privileges to User directly on base tables. User/users may apply insert/delete/update only through procedures.

Please give me a details with some life time examples

Also, which data dictionary objects will give me all information, including users their roles and their privileges ?

Your help will be much appreciated.

Thanks
Re: Application security [message #64503 is a reply to message #64500] Wed, 02 February 2005 23:55 Go to previous messageGo to next message
panna
Messages: 6
Registered: January 2004
Junior Member
Hi Manssor,
check it to see roles and users stuff...
hope it will help u..

SELECT
b.role
, a.grantee
, a.admin_option
, a.default_role
FROM
dba_role_privs a
, dba_roles b
WHERE
granted_role(+) = b.role
ORDER BY
b.role
, a.grantee

and check it with respected tablespaces...

SELECT distinct
a.username username
, a.account_status account_status
, TO_CHAR(a.expiry_date, 'DD-MON-YYYY HH24:MI:SS') expiry_date
, a.default_tablespace default_tablespace
, a.temporary_tablespace temporary_tablespace
, TO_CHAR(a.created, 'DD-MON-YYYY HH24:MI:SS') created
, a.profile profile
, DECODE(p.sysdba,'TRUE', 'TRUE','') sysdba
, DECODE(p.sysoper,'TRUE','TRUE','') sysoper
FROM
dba_users a
, v$pwfile_users p
WHERE
p.username (+) = a.username
ORDER BY username
Re: Application security [message #64522 is a reply to message #64503] Thu, 03 February 2005 12:49 Go to previous message
Asif Khan
Messages: 9
Registered: November 2000
Junior Member
Thanks Panna. But I still not understand how can I see the list of stored procedures/packages that has been assigned to Users through roles. Because user will be able to access/modify the data through roles.

Thanks
Previous Topic: Modifying User Profile to lock him after 3 attempts
Next Topic: Application/Database Security Internal design - template
Goto Forum:
  


Current Time: Fri Mar 29 04:30:09 CDT 2024