Permission for a role...

From: "Jan Nielsen" <jan_a_bilinfo.dk>
Date: Wed, 25 Oct 2006 09:25:41 +0200

Hi

I have a server login Jans_Test.

This maps to a databaseuser Jans_Test in a database

In this database I have a schema AT. Default schema for Jans_Test is AT.

I also have a Database role db_dealer created in SQL with

CREATE ROLE db_dealer

GRANT EXECUTE TO db_dealer

User Jans_Test is member of role db_dealer. The role db_dealer is owned by
Jans_Test.

The role db_dealer owns schema AT.

All objects in the database is in the schema AT

I want to be able to add new users to the role db_dealer and then they
should only have permission to connect to the database and execute stored
procedures.

So the user should only have the permissions that is granted by the role.
And the role should only have permission to connect and execute stored
procedures.

How do I accomplish this?

Best regards

Jan Nielsen

.

Follow-Ups:
- Re: Permission for a role...
  - From: Dan Guzman

Prev by Date: RE: DBCC dllname (FREE)
Next by Date: Hide databases in EM/QA
Previous by thread: User Mapping question
Next by thread: Re: Permission for a role...
Index(es):
- Date
- Thread

Relevant Pages

Re: Java is becoming the new Cobol
... In the Unisys 2200 environment using their Network Database Server, you get a schema work area depending on how you invoke the schema. ... However, it not only copies the schema area into the program, but the "DMCA" (Database Management Communication Area - basically, the block of information that holds your connection state) is copied in too. ... So, you're left with working-storage, which makes it visible to your program only, or common-storage, which makes it visible to programs linked in. ...
(comp.lang.cobol)
Split messages
... This is based off the northwind database. ... Create document schema: ... Select the SQL entry, make sure that we are pointing to the SQL ... For the item select a receive pipeline and name it EmpSplitPipe.btp. ...
(microsoft.public.biztalk.general)
Re: Permission for a role...
... Best regards ... The role db_dealer owns schema AT. ... Permission checking is bypassed for the object owner. ... should only have permission to connect to the database and execute stored ...
(microsoft.public.sqlserver.security)
Re: Permission for a role...
... Permission checking is bypassed for the object owner. ... you should not specify a role as the schema owner if you want to prevent members of that role from using objects in the schema. ... And the role should only have permission to connect and execute stored procedures. ... The script below specifies a database user as the AT schema owner and grants EXECUTE permission on the AT schema to db_dealer members: ...
(microsoft.public.sqlserver.security)
Re: Decouple SQL queries from class in OOP design
... > Of course there are existing applications that uses many different ... > architectures and still provides measurable business value. ... > should access every database directly. ... by the database, but the schema changes. ...
(comp.object)