Re: Rights and Packages

Rodger wrote:
>
> We are using Uniface Six, (Windows) on an Oracle platform.
> Uniface Six makes extensive use of Oracle's
> packages when it creates the scripts to
> create the tables.
>
> We are currently trying to sort out a
> security issue for our applications.
> We figured that we would use Oracle's
> built-in security, of GRANTing
> Select, Update, etc. to the appropriate
> tables. A number of users would have
> select only rights. Easy.
>
> Uniface, however, looks for the packages (associated
> with the data tables) containing the code for
> the I/O. If the packages are not found, then the
> Uniface code will stop / crash.
>
> If we grant execute rights to the packages,
> Oracle seems to also grant all rights to the
> user that the package would have. So, if a
> package is supposed to update, the user
> suddently gets update rights. So, the package
> rights override any CRUD rights.
>
> Does anyone know of anyway to reverse this
> priority?
>
> That is, we could grant Select only
> to the user, and Execute to the package. However,
> the package would be disabled if the user did
> not have all the rights to do what the package
> is defined as doing. Or, the Package rights
> would be overridden by any of the other
> rights.
>
> Thanks in Advance,
>
> Rodger Lepinsky
> ADP Systems Partnership
> Winnipeg, Manitoba, Canada
>
> sysdev_at_adpsystems.mb.ca
> rodger_at_infobahn.mb.ca

Rodger:

I reccomend that you post your question to the Uniface Newsgroup. It is named

comp.soft-sys.app-builder.uniface

Surely someone in that group has faced the same problems and has a plan of attack you can use.

John Hough Received on Tue Jan 28 1997 - 00:00:00 CET