Message-Id: <10626.117562@fatcity.com> From: "Koivu, Lisa" Date: Thu, 21 Sep 2000 09:10:36 -0400 Subject: RE: Help! Security for Packages This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. ------_=_NextPart_001_01C023CD.5502C88C Content-Type: text/plain; charset="iso-8859-1" Hi Ron, The developer must have privileges (select, at least) on the table granted directly to the schema in which he wishes to write his package. Grants cannot be through a role. If your intent is to hide the table from the developer, write a procedure in the schema owning the table, grant the developer execute on the procedure and do not grant him any privs on the base table. Does that answer your question? Your question seemed kind of broad. HTH Lisa Ft. Lauderdale, FL, USA -----Original Message----- From: Smith, Ron L. [mailto:rlsmith@kmg.com] Sent: Wednesday, September 20, 2000 6:36 PM To: Multiple recipients of list ORACLE-L Subject: Help! Security for Packages Can someone please tell me the minimum security needed for a developer to create a Package or Procedure in his own schema that reads one table from another schema on the same instance? Ron Smith Database Administration rlsmith@kmg.com -- Please see the official ORACLE-L FAQ: http://www.orafaq.com -- Author: Smith, Ron L. INET: rlsmith@kmg.com Fat City Network Services -- (858) 538-5051 FAX: (858) 538-5051 San Diego, California -- Public Internet access / Mailing Lists -------------------------------------------------------------------- To REMOVE yourself from this mailing list, send an E-Mail message to: ListGuru@fatcity.com (note EXACT spelling of 'ListGuru') and in the message BODY, include a line containing: UNSUB ORACLE-L (or the name of mailing list you want to be removed from). You may also send the HELP command for other information (like subscribing). ------_=_NextPart_001_01C023CD.5502C88C Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable RE: Help! Security for Packages

Hi Ron,

The developer must have privileges (select, at least) = on the table granted directly to the schema in which he wishes to write = his package.  Grants cannot be through a role.

If your intent is to hide the table from the = developer, write a procedure in the schema owning the table, grant the = developer execute on the procedure and do not grant him any privs on = the base table. 

Does that answer your question?  Your question = seemed kind of broad.

HTH
Lisa
Ft. Lauderdale, FL, USA

-----Original Message-----
From: Smith, Ron L. [mailto:rlsmith@kmg.com]
Sent: Wednesday, September 20, 2000 6:36 PM
To: Multiple recipients of list ORACLE-L
Subject: Help! Security for Packages



Can someone please tell me the minimum security = needed for a developer to
create a Package or Procedure in his own schema that = reads one table from
another schema on the same instance?

Ron Smith
Database Administration
rlsmith@kmg.com
--
Please see the official ORACLE-L FAQ: http://www.orafaq.com
--
Author: Smith, Ron L.
  INET: rlsmith@kmg.com

Fat City Network Services    -- (858) = 538-5051  FAX: (858) 538-5051
San Diego, = California        -- Public Internet = access / Mailing Lists
---------------------------------------------------------------= -----
To REMOVE yourself from this mailing list, send an = E-Mail message
to: ListGuru@fatcity.com (note EXACT spelling of = 'ListGuru') and in
the message BODY, include a line containing: UNSUB = ORACLE-L
(or the name of mailing list you want to be removed = from).  You may
also send the HELP command for other information =