Oracle FAQ Your Portal to the Oracle Knowledge Grid

Home -> Community -> Mailing Lists -> Oracle-L -> db security, managed from application forms

db security, managed from application forms

From: rahul <>
Date: Sat, 30 Aug 2003 06:59:26 -0800
Message-ID: <>

List, after reading so much about managing the srcurity from the db users, roles and privileges, i have finally decided to do the same. I have figured out most of the things...

  1. i have made a form interface to create role and grant privileges to roles. all the data goes to app tables, and then DB roles are created and grants given which matches the data entered. I have a routine which "syncs" the role/privs in the app tables to the db roles and privs.
  2. another form provides interface to create users and grant roles to users.
  3. then i have a MMB menu attached to a form which is executed.

the user will login, and will be displayed a menu based on the role given to the user. this is where i'm not sure how would i handle it, something like... on-new-form-instance i would check the role name from the session_roles, and would have a table which would tell me which menu option has to be enabled with this role..... am i going the right way ??

the forms will be run on the web, so i guess i cannot store them in the db, and cant use the menu roles facility.

i have done a lot of work on this.. but cant figure out the role and form module to run...i dont want to go back to one app user accessing the db, and application managed seurity

would appreciate any help.



Please see the official ORACLE-L FAQ:

Author: rahul

Fat City Network Services    -- 858-538-5051
San Diego, California        -- Mailing list and web hosting services

To REMOVE yourself from this mailing list, send an E-Mail message
to: (note EXACT spelling of 'ListGuru') and in the message BODY, include a line containing: UNSUB ORACLE-L (or the name of mailing list you want to be removed from). You may also send the HELP command for other information (like subscribing). Received on Sat Aug 30 2003 - 09:59:26 CDT

Original text of this message