Table of Contents
Advertisement
Granting permissions on tables and views
Combinations of
permissions
Example
CHAPTER 10
•
You should give users with DBA authority two user IDs, one with DBA
authority and one without, so that they connect as DBA only when
necessary.
•
RESOURCE authority allows the user to create new database objects,
such as tables, views, indexes, or procedures.
You can assign a set of permissions on individual tables and views. Users can
be granted combinations of these permissions to define their access to a table
or view.
•
The ALTER (permission to alter the structure of a table) and
REFERENCES (permission to create indexes and to create unenforced
foreign keys) permissions grant the authority to modify the database
schema, and so will not be assigned to most users. These permissions do
not apply to views.
•
The DELETE, INSERT, and UPDATE permissions grant the authority to
modify the data in a table or view. The DELETE, INSERT, and UPDATE
permissions grant the authority to modify the data in a table or view. Of
these, the UPDATE permission may be restricted to a set of columns in the
table or view.
•
The SELECT permission grants authority to look at data in a table or view,
but does not give permission to alter it.
•
ALL permission grants all the above permissions.
All table and view permissions are granted in a very similar fashion. You can
grant permission to M_Haneef to delete rows from the table named
as follows:
sample_table
1
Connect to the database as a user with DBA authority, or as the owner of
.
sample_table
2
Type and execute the SQL statement:
GRANT DELETE
ON sample_table
TO M_Haneef
You can grant permission to M_Haneef to update the
columns only in the table named
Managing User IDs and Permissions
column_1
as follows:
sample_table
and
column_2
359
Advertisement
Table of Contents
