| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
 |
 | |||
| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
|
| |||
Home -> Community -> Mailing Lists -> Oracle-L -> RE: stupid grant question
I suppose you could grant execute on a wrapper package owned by an account
with the appropriate authority, but unless the enumerated number of tables
to be so handled is very small you would be prone to death by clutter. If
you wrote the wrapper to take a table name as an argument, you would be
effectively granting "any" for exec dbms_stats. I'm not sure whether the
latter solution would be allowed within your rule book. If the package is
owned by an account with "any" capability, I suppose that would violate your
rules. Maybe you have few enough combinations of users "A" and "B" that you
could create the package for each "B" and grant execute for each "A" from
each "B."
(The death by clutter issues here seem very similar to the original implementation of the e-Business suite, where enumerated cross synonyms and grants seemed like a pretty good idea when there were only about 6 schemas involved.)
good luck
mwf
-----Original Message-----
From: oracle-l-bounce_at_freelists.org
[mailto:oracle-l-bounce_at_freelists.org]On Behalf Of
ryan.gaffuri_at_comcast.net
Sent: Monday, August 02, 2004 9:47 AM
To: oracle-l_at_freelists.org
Subject: stupid grant question
User A needs to 'alter table' and 'exec dbms_stats' on a table in User B.
grant all on a table does not do it. I cannot do 'alter any' or DBA
privileges to this user due to security restrictions.
Not used to working in this type of environment, I usually just grant DBA
when I need to do this.
can someone remind me?
 |
 |