| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
 |
 | |||
| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
|
| |||
Home -> Community -> Usenet -> c.d.o.server -> Re: Getting available roles and members
Hi, Bryan!
Easy answer first.
2. user_role_privs, or session_roles
As for #1, I don't think there are any other views to show you this. You'll have to let TEST2 peek at DBA_ROLES and DBA_ROLE_PRIVS somehow.
Since you managed to get DBA privileges for TEST1, you must have some pull
with your DBA (or you are your DBA). You'll have to either -
- Get SYS to GRANT SELECT ON DBA_ROLES and DBA_ROLE_PRIVS to TEST1. Then
TEST1 can create a view pointing to those views and give TEST2 select
permission on the view. Or,
- Get GRANT SELECT ON DBA_ROLES and DBA_ROLE_PRIVS directly for TEST2.
Good luck!
- Catherine
http://profiles.yahoo.com/arcticturtle
In article <etKq7.7291$L47.1956925_at_news0.telusplanet.net>, BD <BD_at_nowhere.com>
writes:
>I am trying to implement a security object into one of our applications and
>have the following scenario:
>
>User TEST1 owns all the tables that contain the application's data.
>Roles TestRole1 and TestRole2 exist in the database.
>User TEST2 exists in the database and is a member of role TestRole1 but not
>TestRole2 (and also belongs to the connect role).
>
>When I am connected as sser TEST2, how can I:
>1) See all the available roles in the database?
>2) See which roles I (as user TEST2) belong to?
>
>When I'm connected as Test1 (who has DBA privs), I can use the DBA_ROLES and
>DBA_ROLE_PRIVS views. But as Test2, I don't have access to those views.
>Also, as Test1, I cannot grant select to those views to any of these roles.
>
>Does anyone else have any ideas on how to get the information that I'm
>after?
>
>Thanks,
>Bryan
>
>
 |
 |