Creating 200k user accounts

From: Alan D. Cabrera <adc_at_tardis.cl.msu.edu>
Date: 8 Nov 1993 15:23:42 GMT
Message-ID: <2blo9u$imh_at_msuinfo.cl.msu.edu>

I need to create user accounts for 200,000 students, faculty and staff who will access a student information system on an Oracle 7 RDBMS. I'd need to restrict student access to only their records at the server level. I'd also like to restrict faculty and staff access to only the records that they should be seeing; e.g. advisors should only see the records of the students that they are advising.

What I've thought up so far was to create 200,000 user accounts and to create views that would restrict row access according to their usernames. For instance, the students DBA would create a view:

	CREATE VIEW student AS SELECT id, name FROM person WHERE id=USER;
	CREATE ROLE students;
	GRANT SELECT ON student TO students;

Then create the student accounts:

	CREATE USER a12345678 IDENTIFIED BY pw1234 PROFILE students;
	GRANT students TO a12345678;
	GRANT CONNECT to a12345678;

Does anyone forsee any problems, other than the nightmare of maintaining 200,000 accounts? I'm definitely open to suggestions but remember, access restriction must be performed at the server level.

---
Alan Cabrera				internet:  adc_at_tardis.cl.msu.edu
Computer Laboratory			phone:     (517) 353-3027
Michigan State University		fax:       (517) 353-9847
514 Computer Center			bitnet:    CABRERA_at_MSU
East Lansing, MI 48824

Received on Mon Nov 08 1993 - 16:23:42 CET

This message: [ Message body ]
Next message: Erwin Dondorp: "RDBMS version from Pro*C"
Previous message: John Bornholt: "Re: Graphical Presentation Tools needed"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message