Re: security permissions of roles\users on table rows

From: Erland Sommarskog (sommar@algonet.se)
Date: 07/06/02

Next message: Aaron Margosis [MS]: "Re: server authentication & ASP authentication"
Previous message: BP Margolin: "Re: log change sa password ?"
In reply to: Panagiotis Konstantinidis: "security permissions of roles\users on table rows"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: Erland Sommarskog <sommar@algonet.se>
Date: Sat, 6 Jul 2002 21:30:03 +0000 (UTC)

Panagiotis Konstantinidis (panagiotis@melonweb.gr) writes:
> Can the above mentioned system be implemented with the help of the
> built-in role\user system of SQL2K and how? I know that permissions may
> be assigned to roles and users with respect to tables and tabvle
> columns. But what happens with table rows?

There is no such support in SQL Server, you will have to roll your own.

It is possible that you could use the SQL Server roles to this aim,
but I'm skeptic to that it would be a good idea to so.

> If the built-in permissions system canot be employed, any ideas about
> how to do it, i.e. have groups and users with individual permissions on
> table rows (like the NTFS file system)?

You will have to set up tables which map users to the rows they have
access to.

If you need a more elaborate system, you should probably use some system
of pre-calculated masks, so that you don't have calculate performance
everytime. We have this in one of our systems, but I have not worked
much with that part, so I cannot give any details.

-- 
Erland Sommarskog, SQL Server MVP
sommar@algonet.se
Books Online (updated!) for SQL 2000 at
http://www.microsoft.com/sql/techinfo/productdoc/2000/books.asp

Next message: Aaron Margosis [MS]: "Re: server authentication & ASP authentication"
Previous message: BP Margolin: "Re: log change sa password ?"
In reply to: Panagiotis Konstantinidis: "security permissions of roles\users on table rows"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: SQL Server Security: NT Groups
... >permissions from their group membership. ... >So if I'm a member of GroupA and GroupA is granted a login ... >>I'm new to SQL Server security and I don't know if it is ... >>then just add the 2 logins to the SQL Server Roles. ...
(microsoft.public.sqlserver.security)
SQL Server Security: NT Groups
... I'm new to SQL Server security and I don't know if it is ... The one with standard permissions and the ... then just add the 2 logins to the SQL Server Roles. ... I login to SQL Server with one of the NT Users I gets a, ...
(microsoft.public.sqlserver.security)
ADP, Application Role, and objects
... The above link is to an atricle on how to implement SQL Server Application ... After you connect with your ADP, fire a bit of code to set the ... third party tools to view the data on the same database. ... Scenario 1 - If I explicitly grant permissions on that object to the user ...
(microsoft.public.access.adp.sqlserver)
Re: field level security question
... Vyas, MVP ... listBox control that gets data from a query of the sql server table. ... > recent change in requirement) I see the option to limit permissions right ... > utility opens except their is just no data. ...
(microsoft.public.sqlserver.security)
RE: SQL 2008 - remote connection to the SSIS 2008 - Access denied
... SQL Server configures the appropriate rights during the installation process, ... then add users/groups and assign the appropriate permissions. ... user who created the package apply to the writer role. ... I checked DCOM MsDts component and my user rights for the Remote ...
(microsoft.public.sqlserver.dts)