Re: user defined Role - HELP
- From: Erland Sommarskog <esquel@xxxxxxxxxxxxx>
- Date: Thu, 10 Jan 2008 14:53:12 -0800
Charlie (Charlie@xxxxxxxxxxxxxxxxxxxxxxxxx) writes:
Well, I have given them permission to exec the sp and gave them select,
delete and update on the table, but am still getting the same error "user
does not have permission on tblUReport" am thoroughly stumped on why it
won't run.
This is because ownership chaining does not apply to TRUNCATE TABLE. To
perform TRUNCATE TABLE, the user needs to have ALTER permission on the
table, even if it's packaged in a stored procedure. The only permissions
that can be transferred through stored procedure ownership are SELECT,
DELETE, INSERT, UPDATE and EXECUTE.
Had you been on SQL 2005, this could easily have been addressed by
certificate signing, but since you are on SQL 2000, there are only two
options, and none of them are appetising:
o Grant the role ALTER permission on the table.
o Change TRUNCATE to DELETE. (And pay the price in performance.)
--
Erland Sommarskog, SQL Server MVP, esquel@xxxxxxxxxxxxx
Books Online for SQL Server 2005 at
http://www.microsoft.com/technet/prodtechnol/sql/2005/downloads/books.mspx
Books Online for SQL Server 2000 at
http://www.microsoft.com/sql/prodinfo/previousversions/books.mspx
.
- References:
- Re: user defined Role - HELP
- From: Tom Moreau
- Re: user defined Role - HELP
- From: Tom Moreau
- Re: user defined Role - HELP
- From: Charlie
- Re: user defined Role - HELP
- Prev by Date: Re: Allow a 'user' to create new users
- Next by Date: Re: user defined Role - HELP
- Previous by thread: Re: user defined Role - HELP
- Next by thread: Re: user defined Role - HELP
- Index(es):
Relevant Pages
|
|
