Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
![]() |
![]() |
Home -> Community -> Usenet -> c.d.o.server -> Re: Passwords in Roles
"Michael42" <melliott42_at_yahoo.com> writes:
> Hello,
>
> I have recently become responsible for an Oracle 9i database where a
> set of applications that were written for it extensively use passwords
> in Oracle Roles. The developer who architected these apps has since
> retired so I cannot ask him why he did this. It is causing a great
> hindrance as I prep this database from 10g (exp\imp etc.).
>
> Are there any sound reasons to store passwords in Oracle Roles in
> modern Oracle databases, what are your thoughts on this practice?
>
>
> Thanks for your feedback,
>
> Michael42
>
Hello Michael,
one reason for password protecting roles is to ensure that only specific
applications can access some tables.
The role is not activated by default so that a user connecting via SQL*Plus
cannaot access these tables (unless he guesses the password required to
activate the role though :-)
When the user starts the application it activates the role as first action
and then can access any table with access granted to that.
Hope that helps,
Lothar
-- Lothar Armbrüster | lothar.armbruester_at_t-online.de Hauptstr. 26 | 65346 Eltville |Received on Fri Jan 19 2007 - 11:31:49 CST
![]() |
![]() |