oracle grant execute function,grant execute on package — oracle-tech

最新推荐文章于 2021-10-21 14:43:07 发布
最新推荐文章于 2021-10-21 14:43:07 发布
阅读量638 收藏
点赞数
文章标签: oracle grant execute function

Emad wrote:

You can have roles for Insert and Roles for Update and then manage them using Secure Application RolesEmad, stop posting links to irrelevant stuff. This is not about Insert and Update. This is about - let's call it - "fine grained access control to packaged subprograms".

A thing I stated does not exist. Could be that I'm wrong, you already suggested that it does, and linked to the front page of VPD.

I asked you to outline a solution, instead. A thing you reclined to do, instead you linked to something completely different.

@mmtar

The purpose - as I know - of the package is to collect related procedure and functions - in the data issue not the security issue -, am I right?!!Let's just say that a package is a collection of related procedure and functions.

Question is, are they related if these procedures and functions relate to different use/users?

Maybe, maybe not - Your choice.

Earlier I linked to examples on how Oracle solves this, themselves. Link was

http://download.oracle.com/docs/cd/B19306_01/network.102/b14266/authoriz.htm#i1007675

Example where they do it by splitting package:

Packages and Package Objects: Example 1

This example shows four procedures created in the bodies of two packages.

CREATE PACKAGE BODY hire_fire AS

PROCEDURE hire(...) IS

BEGIN

INSERT INTO employees . . .

END hire;

PROCEDURE fire(...) IS

BEGIN

DELETE FROM employees . . .

END fire;

END hire_fire;

CREATE PACKAGE BODY raise_bonus AS

PROCEDURE give_raise(...) IS

BEGIN

UPDATE employees SET salary = . . .

END give_raise;

PROCEDURE give_bonus(...) IS

BEGIN

UPDATE employees SET bonus = . . .

END give_bonus;

END raise_bonus;

Access to execute the procedures is given by granting the EXECUTE privilege for the package by using the following statements:

GRANT EXECUTE ON hire_fire TO big_bosses;

GRANT EXECUTE ON raise_bonus TO little_bosses;Example where they do it with wrappers:

Packages and Package Objects: Example 2

This example shows four procedure definitions within the body of a single package. Two additional standalone procedures and a package are created specifically to provide access to the procedures defined in the main package.

CREATE PACKAGE BODY employee_changes AS

PROCEDURE change_salary(...) IS BEGIN ... END;

PROCEDURE change_bonus(...) IS BEGIN ... END;

PROCEDURE insert_employee(...) IS BEGIN ... END;

PROCEDURE delete_employee(...) IS BEGIN ... END;

END employee_changes;

CREATE PROCEDURE hire

BEGIN

employee_changes.insert_employee(...)

END hire;

CREATE PROCEDURE fire

BEGIN

employee_changes.delete_employee(...)

END fire;

PACKAGE raise_bonus IS

PROCEDURE give_raise(...) AS

BEGIN

employee_changes.change_salary(...)

END give_raise;

PROCEDURE give_bonus(...)

BEGIN

employee_changes.change_bonus(...)

END give_bonus;

Using this method, the procedures that actually do the work (the procedures in the employee_changes package) are defined in a single package and can share declared global variables, cursors, on so on. By declaring top-level procedures, hire and fire, and an additional package, raise_bonus, you can grant selective EXECUTE privileges on procedures in the main package:

GRANT EXECUTE ON hire, fire TO big_bosses;

GRANT EXECUTE ON raise_bonus TO little_bosses;Regards

Peter

木大木大本太
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
oracle grant execute function,oracle grant 详解
weixin_34878397的博客
04-03 2577
我以scott/tiger登录以后建立了表以后插入数据提示我插入成功了,但是在查询数据的时候是没有记录的,原因是我的scott用户没有对这个表插入的权限。这时要以system登录以后用grant赋予scottr 中某个表的相应的权限。GRANT名称GRANT— 赋予一个用户,一个组或所有用户访问权限GRANT privilege [, ...] ON object [, ...] TO { ...
oracle grant execute function,Oracle PL/SQL之不能在function里面调用DBMS_LOCK(Grant to role OR Grant to user)...
weixin_42316286的博客
04-03 447
已知:测试用户tuser1,测试角色trole1,trole1已经授权给了tuser1。在测试一段程序时需要用到延时,于是就把dbms_lock授权给了trole1,放在匿名块里测试没有问题:SQL> set serveroutput on;SQL>SQL> BEGIN2 dbms_output.put_line(systimestamp);3 -- dbms_ba...
记录解决问题--oracle grant execute on DBMS_LOGMNR to xxx 报错ORA-01031: insufficient privileges
qq_42977853的博客
10-21 946
解决方法:使用sys用户授权。 注意:用sqlplus登陆sys用户的时候,用户名应该输入:sys as sysdba,否则会报错! 感谢博主ChasingdreamLY
grant execute on FUN to USER;
山鹰的专栏
09-19 3080
grant execute on FUN to USER;
mysql的grant命令
bee100的专栏
08-17 496
本文实例,运行于 MySQL 5.0 及以上版本。 MySQL 赋予用户权限命令的简单格式可概括为: grant 权限 on 数据库对象 to 用户 一、grant 普通数据用户,查询、插入、更新、删除 数据库中所有表数据的权利。 grant select on testdb.* to common_user@'%' grant insert on testdb.* to common_...
mysql server is running with the –skip-grant-tables option
12-16
The MySQL server is running with the –skip-grant-tables option so it cannot execute this statement 意思貌似MYSQL还运行在 –skip-grant-tables模式,如何让他回到原来的模式 第一种方法:原来在mysql.ini...
mysql server is running with the --skip-grant-tables option
09-09
今天在mysql中新建数据库提示The MySQL server is running with the --skip-grant-tables option so it cannot execute this statement,原来是数据中配置的--skip-grant-tables,这样安全就降低了,这个一般当忘记...
MySQL如何使用授权命令grant
09-08
grant execute on testdb.* to 'developer'@'192.168.0.%'; ``` 这里的`developer`是开发者用户,`192.168.0.%`限制了用户只能从特定的IP地址访问。 ### 3. 普通DBA权限 对于需要管理特定数据库的DBA,可以使用`...
14.Oracle自定义函数1
08-08
GRANT EXECUTE ON maxvalue TO other_user; ``` 四、删除自定义函数 若不再需要某个自定义函数,可使用 `DROP FUNCTION` 语句删除: ```sql DROP FUNCTION maxvalue; ``` 五、应用经验与注意事项 虽然数据库...
java_for_oracle.rar_for oracle_oracle
09-14
例如,使用`LOADJAVA`命令加载类,`GRANT EXECUTE`权限给用户,最后通过`CREATE OR REPLACE PROCEDURE`声明Java存储过程。 4. **调用Java存储过程** 调用Java存储过程的方式与调用PL/SQL过程类似,通过SQL的`...
Ubuntu 下mysql常用操作
chuanjiaoye5017的博客
08-29 206
1:打开mysql数据库 mysql -h主机地址 -u用户名 -p用户密码 mysql -h110.110.110.110 -uroot -pabcd123 命令mysql -uroot -p 2:更改密码 格式:mysqladmin -u用户名 -p旧密码 passwo...
oracle grant execute package,OEM提示:Oracle 建议撤消 PUBLIC 对功能强大的程序包的 EXECUTE...
weixin_28803437的博客
04-15 547
OEM提示: Oracle 建议撤消 PUBLIC 对功能强大的程序包 的 EXECUTE 权限 程序包-: DBMS_RANDOM- UTL_HTTP- UTL_SMTP- UTL_TCP- [ oracle @db ~]$ sqlplus / as sysdba SQL*Plus: Release 10.2.0.4.0 - Production on Fri Jun 12 14:20:44 2...
oracle grant 详解(转)
流水不争先
09-03 1万+
<br />我以scott/tiger登录以后建立了表以后插入数据提示我插入成功了,但是在查询数据的时候是没有记录的,原因是我的scott用户没有对这个表插入的权限。这时要以system登录以后用grant赋予scottr 中某个表的相应的权限。<br />GRANT<br />名称<br />GRANT— 赋予一个用户,一个组或所有用户访问权限<br />GRANTprivilege [, ...] ON object [, ...]    TO { PUBLIC | GROUP group | user
Oracle授权语句
u013146766的博客
09-26 2727
授权存储过程:--授权任意的存储过程 grant execute any procedure to user_name; --授权创建存储过程 grant create any procedure to username; --指定存储过程 grant execute ON procedure_name to user_name;
oracle grant的用法,oracle grant总结
weixin_39866963的博客
04-04 346
1.select * from dba_users; --查询数据库中的所有用户2.GRANT SELECT ON tableName to userName;--授权查询(将表tableName的查询权授给userName)GRANT INSERT ON tableName to userName;--授权插入(将表tableName的插入权授给userName)GRANT UPDATE ON ...
oracle的系统和对象权限
weixin_34178244的博客
09-20 165
oracle的系统和对象权限 --------------------------------------------------------------------------------   alter any cluster 修改任意簇的权限   alter any index 修改任意索引的权限   alter any role 修改任意角色的权限   alte...
GRANT 给存储过程赋权限
热门推荐
mouseshuai的专栏
01-17 4万+
    周所周知,grant是给别的用户赋权限。他不只能够给表,视图赋权限,而且对存储过程,方法,以及包都可以,具体语法参考如下:     1.grant给表赋权限:     grant  select/update on  table to user;     grant  权限 on 表  to 用户。     2.grant 给存储过程赋权限:    
Oracle GRANT 附权详解
pear86743的专栏
07-07 1235
GRANT 名称 GRANT — 赋予一个用户,一个组或所有用户访问权限 GRANT privilege [, ...] ON object [, ...] TO { PUBLIC | GROUP group | username } 输入 privilege 可能的权限有: SELECT 访问声明的表/视图的所有列/字段. INSERT 向声明的表中插入所有列字段.
mysql grant 主机名_Mysql用户创建和授权
weixin_28684497的博客
02-01 223
MySQL:grant 语法详解(MySQL 5.X)本文实例,运行于 MySQL 5.0 及以上版本。MySQL 赋予用户权限命令的简单格式可概括为:grant 权限 on 数据库对象 to 用户一、grant 普通数据用户,查询、插入、更新、删除 数据库中所有表数据的权利。grant select on testdb.* to common_user@'%'grant insert on te...
grant execute on dbms_crypto to SYSTEM; 表或视图不存在
最新发布
05-26
如果执行 `grant execute on dbms_crypto to SYSTEM;` 时出现表或视图不存在的错误提示,可能是因为当前用户没有执行该语句的权限,或者该语句执行时需要指定schema。 你可以尝试以管理员权限登录Oracle数据库,并...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值