All_Source Question

Mailing List

Home

Forum Home

Oracle List - by freelists.org

Oracle on SUSE Linux - Runing Oracle on SUSE Linux

Oracle database error code ...

www.freelists.org

Subjects

•	ORA 12540: TNS:internal limit restriction exceeded
•	ORA 12838 please : Is possible to append two times to the same table befo
•	ORA 12838 please : Is possible to append two times to the same table before
•	ora 04031
•	ora 12500 on windows
•	ORA 32004: obsolete and/or deprecated parameter(s) specified
•	ORA 01925: maximum of 30 enabled roles exceeded
•	ORA 01925: maximum of 30 enabled roles exceeded
•	ora 12500 on windows
•	ORA 01650, one idea
•	ORA 01650
•	ORA 4030
•	ORA 12838 please : Is possible to append two times to thesametable before do
•	ORA 12838 please : Is possible to append two times to thesame table before d
•	ORA 01536
•	ORA 03113 end of file on communication channel
•	ORA 32004: obsolete and/or deprecated parameter(s) specified
•	ORA 00600:
•	ORA 00020: maximum number of processes (%s) exceeded
•	ORA 01925: maximum of 30 enabled roles exceeded
•	ORA 3113 while creating a cluster database 9201 RAC on Linux with OCFS
•	ora 12500 on windows
•	ora 12500 on windows
•	ora 12500 on windows
•	ORA 01650, one idea
•	ora 12500 on windows
•	ora 12500 on windows
•	ora 12500 on windows
•	ORA 2000 Error Using DBMS STATS GATHER SCHEMA STATS
•	ORA 01650, one idea
•	ORA 01650, one idea
•	ORA 01650, one idea
•	ORA 01650
•	ORA 01650
•	ORA 01031
•	ORA 4030
•	ORA 4030
•	ORA 06502: PL/SQL: numeric or value error: Bulk Bind: Truncated Bind
•	ORA 01722 invalid number

All_Source Question

All_Source Question

2007-10-01 - By Alvaro Jose Fernandez

Back
Sam,

Is there a way to enable developers to view all source code for selected
schemas without providing additional privileges? I'd like to avoid
giving dba_source privileges.

Try granting the developers the ALTER SESSION privilege (to switch
schema using SET CURRENT_SCHEMA)

Later, you can assure they cannot ALTER (alter trigger .... alter
procedure...) objects other as intended (or any object if you need to),
via an after logon trigger whose owner is SYS. For example:

CREATE OR REPLACE TRIGGER "SYS"."DDL_TRIG_JOHNDOE" BEFORE

CREATE

OR DROP

OR ALTER ON DATABASE

WHEN ( ora_login_user = 'JOHNDOE' )

BEGIN

IF ( ora_dict_obj_owner != 'JOHNDOE') ---John is not working on
it own schema....he switched to another one...

then

IF NOT ( ora_dict_obj_name like 'ALLOWED_OBJECTS%' )
then

raise_application_error(-20122,'Only ALLOWED_OBJECTS are
allowed!!' );

END IF;

IF ( ora_sysevent = 'DROP' ) then

raise_application_error(-20123,'John...you cannot DROP
any objects besides your own ones!!.' );

END IF;

END IF;

END;

regards,

alvaro

<html xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas
-microsoft-com:office:word" xmlns="http://www.w3.org/TR/REC-html40">

<head>
<meta http-equiv=Content-Type content="text/html; charset=us-ascii">
<meta name=Generator content="Microsoft Word 11 (filtered medium)">
<style>

</style>

</head>

<body lang=ES link=blue vlink=purple>

<div class=Section1>

Sam,<o:p></o:p>

<o:p> </o:p>

Is there a way to enable developers to view all
source code for selected schemas without providing additional privileges? 
I’d like to avoid giving dba_source privileges. <o:p></o:p>


<o:p> </o:p>

Try granting the
developers the ALTER SESSION privilege (to switch schema using SET
CURRENT_SCHEMA)<o:p></o:p>

<o:p> </o:p>

<o:p> </o:p>

Later, you can assure
they cannot ALTER (alter trigger .... alter procedure...) objects other as
intended (or any object if you need to), via an after logon trigger whose owner
is SYS. For example:<o:p></o:p>

<o:p> </o:p>

CREATE OR REPLACE
TRIGGER "SYS"."DDL_TRIG_JOHNDOE" BEFORE<o:p></o:p>

CREATE<o:p></o:p>


OR DROP<o:p></o:p
>

OR ALTER ON
DATABASE<o:p></o:p>

WHEN (
ora_login_user = 'JOHNDOE'  )<o:p></o:p>

BEGIN<o:p></o:p>

  &nbsp
;    
IF ( ora_dict_obj_owner != 'JOHNDOE') ---John is not working on it own
schema....he switched to another one...<o:p></o:p>

  &nbsp
;    
then<o:p></o:p>

  &nbsp
;            
IF NOT ( ora_dict_obj_name like 'ALLOWED_OBJECTS%' ) then<o:p></o:p>

           
   
raise_application_error(-20122,’Only ALLOWED_OBJECTS are allowed!!' );<o
:p></o:p>

  &nbsp
;            
END IF;<o:p></o:p>

<o:p> </o:p>


  &nbsp
;            
IF ( ora_sysevent = 'DROP' ) then<o:p></o:p>

           
    
raise_application_error(-20123,’John...you cannot DROP any objects
besides your own ones!!.' );<o:p></o:p>

  &nbsp
;            
END IF;<o:p></o:p>

  &nbsp
;    
END IF;<o:p></o:p>

END;<o:p></o:p>

<o:p> </o:p>

regards,<o:p></o:p>

<o:p> </o:p>

alvaro<o:p></o:p>

<o:p> </o:p>

</div>

</body>

</html>