473,799 Members | 3,161 Online
Bytes | Software Development & Data Engineering Community
+ Post

Home Posts Topics Members FAQ

Howto handle views/Rules Privileges

Hi!

Situation two schemas:

webviews: Contains a set of views with insert rules on them, accessed
via a GUI.
devconf: "Business logic", all the tables, functions, triggers that I
want to restrict access to as far as possible.Prefer ably, I wouldn't
even grant usage to the schema.

I have a problem with the insert rules on the views :

The inserts triggered by the rules are executed with view owner
privileges, but unfortunately any functions, triggers, sequence updates
that are invoked by the rule NOT.

How do I solve this ?
My solution right now is to do "security definer" on all triggers and
functions invoked by the rules, and to grant update privileges for the
sequences. I hope there is a better way.

Thanks in advance for any comments and suggestions,

Uli


---------------------------(end of broadcast)---------------------------
TIP 2: you can get off all lists at once with the unregister command
(send "unregister YourEmailAddres sHere" to ma*******@postg resql.org)

Nov 23 '05 #1
0 1029

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics
3
2725
views across databases
by: jimstallings | last post by:
Hi, I am trying to locate documentation on using views across databases. We have serveral databases broken down by application, some shared databases and some location specific databases supporting multiple facilities using the applications. The DBA for our client is the one that set up the topology of these databases but I don't understand the performance considerations of having views in an applictation database referencing tables in...
Microsoft SQL Server
2
1164
Search for a consistent set of rules for Models and Views in C#
by: mswlogo | last post by:
We frequently keep running into the same set of inconsistent practices around models and views and would like some other opinions. 1) There is no such thing as a "Controller" in C#. Developers keep creating them, but in the purist sense they can't exist in C#. The View and Controller are always one. 2) Exposing the internal structure of the Model to pass its contents to something else (often another model) is bad. Let's say the model's...
C# / C Sharp
1
978
Can a URL rewriter done in .net handle a medium volume website
by: bill | last post by:
I'm attempting to implement a URL rewriter (HTTP Handler) in .net. While I've found some very useful source code freely available (like this one http://www.15seconds.com/issue/030522.htm) ... I'm not sure that this approach could handle the traffic of a morderately well-used website (10000 unique vistors a day). While the website needs query strings ... I'd like to eliminate these from nearly every page. This may create a large number of...
ASP.NET
8
2028
Temporary views
by: Martijn van Oosterhout | last post by:
Currently you can create temporary tables that are deleted at the end of the session. But how about temporary views? It's just a table with a rule so I don't imagine it would be terribly difficult. Are there any issues I havn't thought of? While we're at it, what about temporary functions? -- Martijn van Oosterhout <kleptog@svana.org> http://svana.org/kleptog/ > (... have gone from d-i being barely usable even by its developers >...
PostgreSQL Database
1
1173
Grants on rules
by: Alberto Cabello Sanchez | last post by:
Hi all, I am trying to mimic a table's behaviour on a view thru rules. More precisely, I have a table (say, my_table(field1,field2)) and a view (my_view as select my_field from my_table). For allowing inserts into the view, I have create a rule on "insert into my_view" doing instead insert into my_table(field1,field2) values (NEW.field1,NULL). It works fine, but... I can GRANT or REVOKE privileges (SELECT, INSERT and so on) on my_view...
PostgreSQL Database
2
1322
Views and privileges
by: rhodesm_groups | last post by:
Hi DB2 gurus! Question for you all. Is the following possible (mainly the last two bullets)? * Already have table called XYZ of information keyed by SSNs. * Create an xref table for SSNs to employee numbers. We'll call this table XREF. * Create a view that joins XYZ and XREF, showing all columns of XYZ, but with the employee number instead of SSN. * Remove select access on XYZ and XREF for all users. * Users can perform selects...
DB2 Database
15
3075
Are embedded views (Views within views...) evil and if so why?
by: rod.weir | last post by:
Fellow database developers, I would like to draw on your experience with views. I have a database that includes many views. Sometimes, views contains other views, and those views in turn may contain views. In fact, I have some views in my database that are a product of nested views of up to 6 levels deep! The reason we did this was. 1. Object-oriented in nature. Makes it easy to work with them.
Microsoft SQL Server
6
5944
HOWTO: Make DDL changes?
by: Ian Boyd | last post by:
Every time during development we had to make table changes, we use Control Center. Most of the time, Control Center fails. If you try to "undo all", it doesn't, and you end up losing your identity seed, or your constraints, or your triggers, or your table. Talking to developers at other companies who have had the misfortune of using DB2, they are adamant that you cannot use the tools; they are buggy and you just have to resign yourself to...
DB2 Database
7
4661
She doesn't want the ODBC users to see system views/tables via M$ Access.
by: Gary | last post by:
Hello guys! Bear with me, I am a newbie. She is the Data Warehouse manager. She has about 50 users to use the Oracle database from M$ Access via ODBC connection. All those users have only SELECT privileges on certain tables. I built all the roles and users for them and they work fine. Then she asked "Why do YOU let them see all those system tables?",
Oracle Database
0
10484
Oralloy
Problem With Comparison Operator <=> in G++
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers, it seems that the internal comparison operator "<=>" tries to promote arguments from unsigned to signed. This is as boiled down as I can make it. Here is my compilation command: g++-12 -std=c++20 -Wnarrowing bit_field.cpp Here is the code in...
C / C++
0
10251
jinu1996
Maximizing Business Potential: The Nexus of Website Design and Digital Marketing
by: jinu1996 | last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven tapestry of website design and digital marketing. It's not merely about having a website; it's about crafting an immersive digital experience that captivates audiences and drives business growth. The Art of Business Website Design Your website is...
Online Marketing
1
10228
The easy way to turn off automatic updates for Windows 10/11
by: Hystou | last post by:
Overview: Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows Update option using the Control Panel or Settings app; it automatically checks for updates and installs any it finds, whether you like it or not. For most users, this new feature is actually very convenient. If you want to control the update process,...
Windows Server
0
10027
tracyyun
Discussion: How does Zigbee compare with other wireless protocols in smart home applications?
by: tracyyun | last post by:
Dear forum friends, With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each protocol has its own unique characteristics and advantages, but as a user who is planning to build a smart home system, I am a bit confused by the choice of these technologies. I'm particularly interested in Zigbee because I've heard it does some...
General
0
9072
agi2029
AI Job Threat for Devs
by: agi2029 | last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then launch it, all on its own.... Now, this would greatly impact the work of software developers. The idea...
Career Advice
0
6805
Couldn’t get equations in html when convert word .docx file to html file in C#.
by: conductexam | last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one. At the time of converting from word file to html my equations which are in the word document file was convert into image. Globals.ThisAddIn.Application.ActiveDocument.Select();...
C# / C Sharp
0
5463
Trying to create a lan-to-lan vpn between two differents networks
by: TSSRALBI | last post by:
Hello I'm a network technician in training and I need your help. I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs. The last exercise I practiced was to create a LAN-to-LAN VPN between two Pfsense firewalls, by using IPSEC protocols. I succeeded, with both firewalls in the same network. But I'm wondering if it's possible to do the same thing, with 2 Pfsense firewalls...
Networking - Hardware / Configuration
0
5585
Windows Forms - .Net 8.0
by: adsilva | last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
Visual Basic .NET
3
2938
bsmnconsultancy
Comprehensive Guide to Website Development in Toronto: Expert Insights from BSMN Consultancy
by: bsmnconsultancy | last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...
General

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes
How to Post and Respond on Bytes
How to Promote and Link on Bytes
How to increase your Ranking on Bytes
Become a Recognized Expert on Bytes
Feedback Welcomed! Contact Us