row level security without views

From: "Nikhil" <nikhilukidwe@xxxxxxxxx>
Date: 25 Sep 2006 23:50:28 -0700

I want to implement row level security in SQL Server 2005 without
implementing views. The desired effect is firing a query on a table
like "select * from <tablename>" should return only rows which are
accessible to the logged in user. Which rows are accessible will be
decided using some data in another table. This table will have user
login name and one or more IDs associated with it. These IDs will be FK
in the table on which we fire select (or update/delete) query. I need
to device a solution such that the select query will return all rows
from the table which contain the ID that is assigned to the logged in
user. Is it possible in SQL Server 2005 without implmenting views on
each table?

Thanks in advance.
Nikhil.

.

Follow-Ups:
- Re: row level security without views
  - From: Uri Dimant

Prev by Date: Re: Hacking the sa password
Next by Date: Re: row level security without views
Previous by thread: Re: Hacking the sa password
Next by thread: Re: row level security without views
Index(es):
- Date
- Thread

Relevant Pages

Re: Filtering DB Call based on local Data
... Send the Ids as XML, parse it in a SP into a temp table then Join and return ... SQL Server will take care of the rest. ... single parameter to your query (it can be a stored procedure or dynamic ... specific to the order from the order table on a Sql Server Database ...
(microsoft.public.dotnet.languages.csharp)
Re: CONTAINS performance
... That said, and with the query plan, I can start to give you more ... relational join in the context of the free-text optimization, ... SQL Server tables. ...
(microsoft.public.sqlserver.fulltext)
Re: Indexing Service, Openquery and sp_executesql
... SQL Server version and sp are you running? ... > data from the indexing service catalog when pasted into ... > query analyzer, but failed when put against sp_executesql ... I would choose Microsoft Indexing ...
(microsoft.public.sqlserver.fulltext)
Re: Problem using Access or Query Designer to run queries in SQL Serve
... >or Query Designer within Enterprise Manager, it works and I get data back. ... >ODBC Call Failed [ODBC SQL Server Driver] Timeout Expirederror in Access ... >[ODBC SQL Server Driver] Timeout Expired ...
(microsoft.public.sqlserver.odbc)
Re: Transaction Isolation Level
... This means that while I initiate a transaction selecting all new orders it ... My query is executed on a SQL server 2005. ... the isolation level you should use is snapshot isolation. ...
(comp.databases.ms-sqlserver)