Application security [message #64500] |
Wed, 02 February 2005 16:18 |
Asif Khan
Messages: 9 Registered: November 2000
|
Junior Member |
|
|
Hi All,
We have a scenerio where we are managing all security with respect to database roles.
We do not want to assign any privileges to User directly on base tables. User/users may apply insert/delete/update only through procedures.
Please give me a details with some life time examples
Also, which data dictionary objects will give me all information, including users their roles and their privileges ?
Your help will be much appreciated.
Thanks
|
|
|
Re: Application security [message #64503 is a reply to message #64500] |
Wed, 02 February 2005 23:55 |
panna
Messages: 6 Registered: January 2004
|
Junior Member |
|
|
Hi Manssor,
check it to see roles and users stuff...
hope it will help u..
SELECT
b.role
, a.grantee
, a.admin_option
, a.default_role
FROM
dba_role_privs a
, dba_roles b
WHERE
granted_role(+) = b.role
ORDER BY
b.role
, a.grantee
and check it with respected tablespaces...
SELECT distinct
a.username username
, a.account_status account_status
, TO_CHAR(a.expiry_date, 'DD-MON-YYYY HH24:MI:SS') expiry_date
, a.default_tablespace default_tablespace
, a.temporary_tablespace temporary_tablespace
, TO_CHAR(a.created, 'DD-MON-YYYY HH24:MI:SS') created
, a.profile profile
, DECODE(p.sysdba,'TRUE', 'TRUE','') sysdba
, DECODE(p.sysoper,'TRUE','TRUE','') sysoper
FROM
dba_users a
, v$pwfile_users p
WHERE
p.username (+) = a.username
ORDER BY username
|
|
|
Re: Application security [message #64522 is a reply to message #64503] |
Thu, 03 February 2005 12:49 |
Asif Khan
Messages: 9 Registered: November 2000
|
Junior Member |
|
|
Thanks Panna. But I still not understand how can I see the list of stored procedures/packages that has been assigned to Users through roles. Because user will be able to access/modify the data through roles.
Thanks
|
|
|