RE: ** ORACLE Forms security **
From: <hatzinger_m_at_bmwf1f.bmwf.gv.at>
Date: 12 Aug 92 13:21:32 GMT
Message-ID: <1992Aug12.141616.27_at_bmwf1f.bmwf.gv.at>
"command" includes the actual command (SELECT=3,INSERT,...)
"program" includes the actual program name (IAP,SQLPLUS,...).
Date: 12 Aug 92 13:21:32 GMT
Message-ID: <1992Aug12.141616.27_at_bmwf1f.bmwf.gv.at>
CREATE VIEW view_name AS
SELECT *
FROM table_name WHERE EXISTS (SELECT 1 FROM sys.v_$session S,sys.v_$process P WHERE addr=paddr AND S.username=user AND (INSTR(program,'IAP') <> 0 OR command=3) AND terminal=USERENV('TERMINAL'))WITH CHECK OPTION;
"command" includes the actual command (SELECT=3,INSERT,...)
"program" includes the actual program name (IAP,SQLPLUS,...).
3. ORACLE-user "SYS" must give a "GRANT OPTION" on the virtual views
4. Set grants only on the view for all your users
GRANT SELECT,INSERT,UPDATE,DELETE ON view_name TO ......
So they can update your database only in SQL*Forms (if it works on your system too ?).
GOOD LUCK !!
-- -------------------------------------------------------------------------------- Klaus-Michael Hatzinger hatzinger_m_at_bmwf1f.bmwf.gv.at Federal Ministry of Science and Research Computer Center Vienna, AustriaReceived on Wed Aug 12 1992 - 15:21:32 CEST