VPD(虛擬專(zhuān)用數(shù)據(jù)庫(kù))&rls(rowLEVELsecurity)

1.建立主用戶測(cè)試表測(cè)試數(shù)據(jù) 分用戶

--主數(shù)據(jù)用戶
create user mainuser identified by oracle;
grant connect,resource to mainuser;

--wh分用戶
create user whuser identified by oracle;
grant connect,resource to whuser;

--sw分用戶
create user swuser identified by oracle;
grant connect,resource to swuser;

--測(cè)試表與數(shù)據(jù)
create table mainuser.maintab(name varchar2(20),salary number(8,2),DEP_ID number(8,2));

insert into mainuser.maintab values('whuser',5000,1);
insert into mainuser.maintab values('swuser',3000,2);

--表賦權(quán)限
grant select on mainuser.maintab to whuser;
grant select on mainuser.maintab to swuser;

2.建立控制函數(shù)

create or replace function main_fun
(owner varchar2,objname varchar2) return varchar2
is
v_where_clause varchar2(2000);
begin
v_where_clause :=' upper(name)=' || '''' || sys_context('userenv','session_user') || '''';
return v_where_clause;
end;
/

3.建立rls策略

BEGIN
dbms_rls.add_policy(object_schema => 'mainuser',
object_name => 'maintab',
policy_name => 'main_rlw',
function_schema =>'mainuser',
policy_function => 'main_fun',
statement_types =>'select',
sec_relevant_cols=>'salary');
END;
/

4.驗(yàn)證

SQL> connect swuser/oracle
Connected.
SQL> select * from mainuser.maintab;

NAME SALARY DEP_ID
-------------------- ---------- ----------
swuser 3000 2

SQL> connect whuser/oracle
Connected.
SQL> select * from mainuser.maintab;

NAME SALARY DEP_ID
-------------------- ---------- ----------
whuser 5000 1

文章題目：VPD(虛擬專(zhuān)用數(shù)據(jù)庫(kù))&rls(rowLEVELsecurity)
URL網(wǎng)址：http://bm7419.com/article40/phdcho.html

成都網(wǎng)站建設(shè)公司_創(chuàng)新互聯(lián)，為您提供網(wǎng)站導(dǎo)航、網(wǎng)站設(shè)計(jì)公司、App設(shè)計(jì)、網(wǎng)站策劃、域名注冊(cè)、搜索引擎優(yōu)化

聲明：本網(wǎng)站發(fā)布的內(nèi)容（圖片、視頻和文字）以用戶投稿、用戶轉(zhuǎn)載內(nèi)容為主，如果涉及侵權(quán)請(qǐng)盡快告知，我們將會(huì)在第一時(shí)間刪除。文章觀點(diǎn)不代表本網(wǎng)站立場(chǎng)，如需處理請(qǐng)聯(lián)系客服。電話：028-86922220；郵箱：631063699@qq.com。內(nèi)容未經(jīng)允許不得轉(zhuǎn)載，或轉(zhuǎn)載時(shí)需注明來(lái)源：創(chuàng)新互聯(lián)

猜你還喜歡下面的內(nèi)容