My article on dynamic SQL, "The Curse and Blessings of Dynamic SQL" is
frequently referred to in these newsgroups. I like to announce that I
have rewritten this article thoroughly. I started off with revising it
for SQL 2005, but the more I looked at it, I felt that it was time for a
major overhaul. After all, I wrote the initial version with a mindset of
SQL 6.5.
The URL is the same: http://www.sommarskog.se/dynamic_sql.html.
At the same time, I like to announce a new article, Granting Permissions
through Stored Procedures, http://www.sommarskog.se/grantperm.html. I wrote
this article since SQL 2005 offers two ways to use dynamic SQL in stored
procedures without giving direct table permissions to users. One method
is simpler than the other, but the simple method has some serious side-
effects. I cover these two methods, certificates and impersonation as well
as the classic ownership chaining in this article, and I also briefly
cover owner/schema separation and application roles.
--
Erland Sommarskog, SQL Server MVP, es****@sommarskog.se
Books Online for SQL Server 2005 at
http://www.microsoft.com/technet/pro...ads/books.mspx
Books Online for SQL Server 2000 at
http://www.microsoft.com/sql/prodinf...ons/books.mspx
