RE: VPD with column masking

From: Kenneth Naim <>
Date: Tue, 20 Oct 2009 12:09:49 -0400
Message-ID: <01e901ca519f$c1e4fce0$45aef6a0$_at_com>

Yes it can be done. The function will be run by every user selecting from the table, so execute on the function should be granted to public. Within the function you can check for a list of hard coded users, or have it lookup the data in a table (which should be protected against changes using fga) or you can use a db role that can be granted to users, and check dba/all_role_privs.  


From: [] On Behalf Of J. Dex
Sent: Tuesday, October 20, 2009 11:10 AM To:
Subject: VPD with column masking  

Using VPD with column masking, is it possible to set up a function/policy so it only applies to a small percentage of the users in the database?  

I have a main schema with all the tables under that schema. I want a few of the users (not everyone) to only be able to look at some of the data that resides in those tables under that main schema. Is it possible to apply a function and policy to work that way? What is the best way to do that?

Hotmail: Free, trusted and rich email service. Get it <> now.

Received on Tue Oct 20 2009 - 11:09:49 CDT

Original text of this message