Re: Views and Tables
- From: Stephane Faroult <sfaroult@xxxxxxxxxx>
- To: oracle-l@xxxxxxxxxxxxx
- Date: Tue, 09 Mar 2004 22:36:27 +0100
That's using a power hammer to prepare powder sugar.
The initial mistake is to create the views not under the reporting user,
but the schema owner - and GRANT SELECT on the views, and the views
only, to the reporting user.
SF
Chris Stephens wrote:
>
> Have you looked into row level security?
>
> ...i think that would be ideal and easy to implement.
>
> Chris
>
> -----Original Message-----
> From: mkline1@xxxxxxxxxxx [mailto:mkline1@xxxxxxxxxxx]
> Sent: Tuesday, March 09, 2004 3:18 PM
> To: oracle-l@xxxxxxxxxxxxx
> Subject: Views and Tables
>
> Client has quite a few partitioned tables. Users are starting to want to
> query the actual tables, but we've got to keep them from queries that might
> combine multiple partitions.
>
> We can probably create some "this_month", "last_month" views under a
> reporting user id, but if the views can select the tables, then if the user
> is cleaver enough, they too may find they can get to the tables.
>
> Is there a way to let them see the views but hide the table names from them?
>
> I figure one of the table views will give it all away.
>
> We do monitor with Precise, but still.
>
> This is 8.1.7.4 on HP-UX.
>
> --
> Michael Kline
> B2Bsol
> Midlothian, VA 23112
> 804-744-1545
----------------------------------------------------------------
Please see the official ORACLE-L FAQ: http://www.orafaq.com
----------------------------------------------------------------
To unsubscribe send email to: oracle-l-request@xxxxxxxxxxxxx
put 'unsubscribe' in the subject line.
--
Archives are at //www.freelists.org/archives/oracle-l/
FAQ is at //www.freelists.org/help/fom-serve/cache/1.html
-----------------------------------------------------------------
Other related posts:
