ORACLE permission management
ORACLE's permission management
ORACLE's security mechanism is composed of a three-level architecture of system permissions, entity permissions and role permissions.
Permission type explanation
System permissions: refers to the right to operate the database system and data structure, such as creating/deleting users, tables, synonyms, indexes, etc.
Entity permissions: refers to the user's right to operate data, such as query, Update, insert, delete, integrity constraints, etc.
Role permissions: Several related permissions are combined into roles, and the roles can be further combined to form a hierarchical tree to correspond to administrative positions in the real world. In addition to restricting operation rights and control rights, role permissions can also restrict the permissions to execute certain applications.
Such a security control system enables managers and program developers of the entire system to control the operation of system commands, data operations and application execution.
(1) System permissions
The granting command of system permissions is GRANT. For example, grant the permission to create any table view to user scott:
GRANT create any view TO scott;
The revocation command of system permissions is REVOKE. For example, the permission to create any view is withdrawn from user scott. :
REVOKE create any view FROM scott;
(2) Entity Permissions
Each type of entity has entity permissions associated with it.
Examples of commands to grant entity permissions (grant Select and Insert permissions on the EMP table to scott):
GRANT select,insert ON emp TO scott;
Examples of commands to revoke entity permissions (recover Select permissions on the EMP table from scott):
REVOKE select ON emp FROM scott;
(3) Management roles
A role is a combination of many permissions and roles, which greatly facilitates ORACLE permission management.
·Create a role, for example, create a role named dept1 with the password hello:
CREATE ROLE dept1 IDENTIFIED BY hello;
·Use a role, you can use the role by modifying the user's default role, or use the role through authorization Granted to other roles or users. For example, change the default role of user scott to DEVELOPER:
ALTER USER scott DEFAULT ROLE DEVELOPER;
Grant the role dept1 to the manager role:
GRANT manager TO scott;
·Enable or invalidate the role. The DBA can temporarily recycle it by controlling the validity or invalidation of the role. Part of the user's permissions. To invalidate the dept1 role:
SET ROLE dept1 DISABLE;
·Delete the role, which will affect the permissions of users who own this role and other roles. Use the DROP ROLE command to delete a role, such as:
DROP ROLE dept1;
The above is the permission management of ORACLE. For more related articles, please pay attention to the PHP Chinese website (www.php.cn)!
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
AI Hentai Generator
Generate AI Hentai for free.
Hot Article
Hot Tools
Notepad++7.3.1
Easy-to-use and free code editor
SublimeText3 Chinese version
Chinese version, very easy to use
Zend Studio 13.0.1
Powerful PHP integrated development environment
Dreamweaver CS6
Visual web development tools
SublimeText3 Mac version
God-level code editing software (SublimeText3)
Hot Topics
How long will Oracle database logs be kept?
May 10, 2024 am 03:27 AM
The retention period of Oracle database logs depends on the log type and configuration, including: Redo logs: determined by the maximum size configured with the "LOG_ARCHIVE_DEST" parameter. Archived redo logs: Determined by the maximum size configured by the "DB_RECOVERY_FILE_DEST_SIZE" parameter. Online redo logs: not archived, lost when the database is restarted, and the retention period is consistent with the instance running time. Audit log: Configured by the "AUDIT_TRAIL" parameter, retained for 30 days by default.
Function to calculate the number of days between two dates in oracle
May 08, 2024 pm 07:45 PM
The function in Oracle to calculate the number of days between two dates is DATEDIFF(). The specific usage is as follows: Specify the time interval unit: interval (such as day, month, year) Specify two date values: date1 and date2DATEDIFF(interval, date1, date2) Return the difference in days
The order of the oracle database startup steps is
May 10, 2024 am 01:48 AM
The Oracle database startup sequence is: 1. Check the preconditions; 2. Start the listener; 3. Start the database instance; 4. Wait for the database to open; 5. Connect to the database; 6. Verify the database status; 7. Enable the service (if necessary ); 8. Test the connection.
How much memory does oracle require?
May 10, 2024 am 04:12 AM
The amount of memory required by Oracle depends on database size, activity level, and required performance level: for storing data buffers, index buffers, executing SQL statements, and managing the data dictionary cache. The exact amount is affected by database size, activity level, and required performance level. Best practices include setting the appropriate SGA size, sizing SGA components, using AMM, and monitoring memory usage.
How to use interval in oracle
May 08, 2024 pm 07:54 PM
The INTERVAL data type in Oracle is used to represent time intervals. The syntax is INTERVAL <precision> <unit>. You can use addition, subtraction, multiplication and division operations to operate INTERVAL, which is suitable for scenarios such as storing time data and calculating date differences.
How to see the number of occurrences of a certain character in Oracle
May 09, 2024 pm 09:33 PM
To find the number of occurrences of a character in Oracle, perform the following steps: Get the total length of a string; Get the length of the substring in which a character occurs; Count the number of occurrences of a character by subtracting the substring length from the total length.
How to replace string in oracle
May 08, 2024 pm 07:24 PM
The method of replacing strings in Oracle is to use the REPLACE function. The syntax of this function is: REPLACE(string, search_string, replace_string). Usage steps: 1. Identify the substring to be replaced; 2. Determine the new string to replace the substring; 3. Use the REPLACE function to replace. Advanced usage includes: multiple replacements, case sensitivity, special character replacement, etc.
Oracle database server hardware configuration requirements
May 10, 2024 am 04:00 AM
Oracle database server hardware configuration requirements: Processor: multi-core, with a main frequency of at least 2.5 GHz. For large databases, 32 cores or more are recommended. Memory: At least 8GB for small databases, 16-64GB for medium sizes, up to 512GB or more for large databases or heavy workloads. Storage: SSD or NVMe disks, RAID arrays for redundancy and performance. Network: High-speed network (10GbE or higher), dedicated network card, low-latency network. Others: Stable power supply, redundant components, compatible operating system and software, heat dissipation and cooling system.
