Details

Giving Permissions through Stored Procedures

Speaker: Erland Sommarskog

Duration: 60 minutes

Track: DEV

You probably know that with a stored procedure you can permit users to access or update data even if they have no direct permissions on the table. But you may have noticed that this does not work when the SP uses dynamic SQL. 

In this session you will learn why it is so and techniques how you can use to overcome this. You will also learn that the same techniques can be to permit users to perform specific actions they need to do without granting them general high-level permissions on database or server level by packaging these actions into a stored procedure. You will also learn why should should be careful with setting a database TRUSTWORTHY.

The session should be of interest both to DBAs and application developers that need to consider advanced permissions in their stored procedures.


Back to Top
cage-aids
cage-aids
cage-aids
cage-aids