Re: Autorisation in ODBC for Oracle 7.3

Answers below embedded

Hth,

Sybrand Bakker, Oracle DBA

Martijn Oudeman wrote:

> I am a user of a ODBC driver fro a Oracle 7.3 database. I use the driver
> in combination with Excel. I have to wuestions?
>
> 1.
> Is it possible within ODBC to disable insert, update and delete
> priveleges for a certain user. The user does have these priveleges while
> user the original application for which the database was build.
>

If the user owns the table it is not possible. If the user doesn't own the table, and has privilege through non-ODBC applications it' simple: create a role that has select privilege only. This is the only role that should be the default role. Create other role(s) with the other privileges. These should not be on by default, and need to be enabled by set role statements.

>
> 2.
> Is it possible to incorporate horizontal database autorisation through
> ODBC without using VIEWS on the original tables?
> If not, how can I manage that a certain user can only read data from a
> database when the retreived records meet certain conditions (derived
> from the user name of other database tables) ?

create view xyz
as select * from table
where user_column = user
The right hand user is a pseudo column returning the currently logged on user

Received on Thu Mar 25 1999 - 15:09:54 CST