| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
 |
 | |||
| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
|
| |||
Home -> Community -> Mailing Lists -> Oracle-L -> global context
We used to have roles enabled by application front end . That was not secure . Then oracle provided passwords for role . We embedded passwords into apps . They say its still not secure .
Now go for contexts and enable policies.
In oracle 9i you can have global context which can be enabled by any session . Now here i am confused ..
How does this thing is secure, cuz any session can say my context is "MANAGER' or "CLERK" or whatever . Isn't it back to the roles initially where any session can say heyyy enable role "MANAGER" ( offcourse if its granted ).
-ak
--
Please see the official ORACLE-L FAQ: http://www.orafaq.net
--
Author: AK
INET: oramagic_at_hotmail.com
Fat City Network Services -- 858-538-5051 http://www.fatcity.com San Diego, California -- Mailing list and web hosting servicesto: ListGuru_at_fatcity.com (note EXACT spelling of 'ListGuru') and in the message BODY, include a line containing: UNSUB ORACLE-L (or the name of mailing list you want to be removed from). You may also send the HELP command for other information (like subscribing). Received on Thu Jul 31 2003 - 16:39:30 CDT
---------------------------------------------------------------------
To REMOVE yourself from this mailing list, send an E-Mail message
 |
 |