sql >> Database teknologi >  >> RDS >> Oracle

Hvordan kontrollerer man privilegierne (DDL,DML,DCL) på objekter, der er tildelt skema, roller i oracle-databasen?

Lidt kort om dataordbogsvisningspræfiks:

ALL_    -Describes PUBLIC Object grants.
USER_   -Describes current user Object grants.
DBA_    -Describes all object grants in the database.

Nyttige visningsoplysninger:

ROLE_ROLE_PRIVS     -describes the roles granted to other roles. 
ROLE_SYS_PRIVS      -describes system privileges granted to roles.
ROLE_TAB_PRIVS      -describes table privileges granted to roles. 
DBA_ROLE_PRIVS      -describes the roles granted to all users and roles in the database.
DBA_SYS_PRIVS       -describes system privileges granted to users and roles.
DBA_TAB_PRIVS       -describes all object grants in the database.
DBA_COL_PRIVS       -describes all column object grants in the database.

For at vide mere om PRIVS visninger besøg her .

Forespørgsler:

-Om bruger-/skemastatus

select username,account_status, created from dba_users where username in ('SCOTT');

-Tjek de tildelte roller til rolle og skema

select * from DBA_ROLE_PRIVS where grantee in ('SCOTT','RESOURCE');

-Tjek rolleprivilegierne

select * from ROLE_ROLE_PRIVS where role in ('RESOURCE','CONNECT');    
select * from ROLE_TAB_PRIVS  where role in ('RESOURCE','CONNECT');
select * from ROLE_SYS_PRIVS  where role in ('RESOURCE','CONNECT');

Pseudo Code:
select 'grant '||privilege||' to ROLE_SLAVE;' from ROLE_SYS_PRIVS where role in ('RESOURCE','CONNECT');
select 'grant '||privilege||' to ROLE_SLAVE;' from ROLE_TAB_PRIVS where role in ('RESOURCE','CONNECT');

-Tjek privilegier for tildelte objekter for skema

select * from DBA_SYS_PRIVS where grantee in ('SCOTT');
select * from DBA_TAB_PRIVS where grantee in ('SCOTT');
select * from DBA_COL_PRIVS where grantee in ('SCOTT');

Pseudo Code: 
select 'grant '||privilege||' to SCOTT_SLAVE;' from DBA_SYS_PRIVS where grantee in ('SCOTT');
select 'grant '||privilege||' on '||owner||'.'||table_name||' to SCOTT_SLAVE;' from DBA_TAB_PRIVS where grantee in ('SCOTT');
select 'grant '||privilege||' ('||column_name||') '||' on '||owner||'.'||table_name||' to SCOTT_SLAVE;' from DBA_COL_PRIVS where grantee in ('SCOTT');

Tak!




  1. Sådan undgår du denne PDO-undtagelse:Kan ikke udføre forespørgsler, mens andre ubuffrede forespørgsler er aktive

  2. PostgreSQL-syntaksfejl ved eller nær 'union'

  3. Returnummer fra Oracle Select-sætning efter parsingsdato

  4. Hvorfor mislykkes forbindelsen til min Postgres-server i Azure, hvis min app ikke har SSL aktiveret?