| USER rights & packages [message #53069] |
Tue, 27 August 2002 07:10  |
Gus
Messages: 18
Registered: December 2000
|
Junior Member |
|
|
Hi
If you have a package that has functions/procedures
that insert/delete/modify/select data how can you give a user access so that he cannot execute the functions/procedures that modify/insert/delete data but
only packages that select data.
thanks
|
|
|
|
| Re: USER rights & packages [message #53071 is a reply to message #53069] |
Tue, 27 August 2002 07:57  |
andrew again
Messages: 2577
Registered: March 2000
|
Senior Member |
|
|
|
you need to wrap that/those packages with another package(or standalone proc/funct) then grant execute on these new ones wich only expose the Select functionality. You could also consider using the "invoker rights" directive in the package which means that the caller will not get the rights of the code owner - he'll get his own schema. If his own schema has synonyms pointing to tables with only SELECT access then the user will get an error when they call DML which tries to modify data.
|
|
|
|
] 
Blog
Search
Help
Members
Register
Login
Home
