0% found this document useful (0 votes)

25 views9 pages

Oracle RLS_ Step-by-Step Data Access Control

Uploaded by

muhammathrinas722

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

25 views9 pages

Oracle RLS_ Step-by-Step Data Access Control

Uploaded by

muhammathrinas722

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 9

Implementing Row-Level

Security (RLS) in Oracle

This document outlines the steps to implement Row-Level Security (RLS) in
Oracle for the user PRACTICE1. It includes creating a new user, setting up an
EMP table with sample data, defining the necessary context, procedure, and
function, and applying the RLS policy. Testing steps are also included to validate
the implementation.

Step 1: Create the User

Create the user PRACTICE1 and grant the required privileges.

CREATE USER PRACTICE1 IDENTIFIED BY practice1;

GRANT CONNECT, RESOURCE TO PRACTICE1;

ALTER USER PRACTICE1 QUOTA UNLIMITED ON USERS;

GRANT CREATE SESSION, CREATE TABLE, CREATE PROCEDURE,

CREATE VIEW, CREATE TRIGGER TO PRACTICE1;

GRANT EXECUTE ON DBMS_RLS TO PRACTICE1;

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

Step 2: Create the EMP Table

Create the EMP table under the PRACTICE1 schema.

CREATE TABLE EMP (

EMPNO NUMBER(4) PRIMARY KEY,
ENAME VARCHAR2(20),
JOB VARCHAR2(20),
MGR NUMBER(4),
HIREDATE DATE,
SAL NUMBER(10, 2),
COMM NUMBER(10, 2),
DEPTNO NUMBER(4),
USERNAME VARCHAR2(20)
);

Step 3: Insert Sample Data

Populate the EMP table with sample records.

INSERT INTO EMP VALUES (222, 'ANNAR', 'MANAGER', NULL,

SYSDATE, 3000, NULL, 10, 'ALI');
INSERT INTO EMP VALUES (7788, 'SCOTT', 'ANALYST', 7566, SYSDATE,
3000, NULL, 20, 'DANISH');

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

INSERT INTO EMP VALUES (7698, 'BLAKE', 'MANAGER', 7839, SYSDATE,
2850, NULL, 30, 'SYSTEM');
INSERT INTO EMP VALUES (7566, 'JONES', 'MANAGER', 7839, SYSDATE,
2975, NULL, 20, 'DANISH');
INSERT INTO EMP VALUES (7839, 'KING', 'PRESIDENT', NULL, SYSDATE,
5000, NULL, 10, 'ALI');
INSERT INTO EMP VALUES (7499, 'ALLEN', 'SALESMAN', 7698, SYSDATE,
1900, 300, 30, 'SYSTEM');
INSERT INTO EMP VALUES (7782, 'CLARK', 'MANAGER', 7839, SYSDATE,
2450, NULL, 10, 'ALI');
INSERT INTO EMP VALUES (7521, 'WARD', 'SALESMAN', 7698, SYSDATE,
1250, 500, 30, 'SYSTEM');
INSERT INTO EMP VALUES (7934, 'MILLER', 'CLERK', 7782, SYSDATE,
1300, NULL, 10, 'ALI');
INSERT INTO EMP VALUES (7902, 'FORD', 'ANALYST', 7566, SYSDATE,
3000, NULL, 20, 'DANISH');
INSERT INTO EMP VALUES (7654, 'MARTIN', 'SALESMAN', 7698,
SYSDATE, 1250, 1400, 30, 'SYSTEM');

Step 4: Create a Context

Define a context named TEST that will store user-specific attributes.

create context test using set_deptno;

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

Step 5: Define a Procedure to Set Context

Create a procedure to set the context for the TEST namespace.

create or replace procedure set_deptno(p1 varchar2) as

begin
dbms_session.set_context(
namespace => 'test',
attribute => 'username',
value => p1
);
end;
/

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

Step 6: Define a Function for RLS Predicate

Create a function that defines the RLS predicate.

create or replace function dept_predicate(schema_name in varchar2,

object_name in varchar2)
return varchar2
is
lv_predicate varchar2(1000);
begin
lv_predicate := 'username = sys_context(''test'', ''username'')';
return lv_predicate;
exception
when others then
raise_application_error(-20001, 'Error in dept_predicate: ' || sqlerrm);
end;
/

Step 7: Apply the RLS Policy

Attach the RLS policy to the EMP table.

BEGIN
DBMS_RLS.ADD_POLICY(
object_schema => 'PRACTICE1',

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

object_name => 'EMP',
policy_name => 'EMP_CL_POLICY',
function_schema => 'PRACTICE1',
policy_function => 'dept_predicate'
);
END;
/

Step 8: Test the Implementation

Set the Context for ALI:

begin
set_deptno('ALI');
end;
/

Verify the Context Setting:

SELECT SYS_CONTEXT('TEST', 'USERNAME') FROM DUAL;

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

OUTPUT:
SYS_CONTEXT('TEST', 'USERNAME')
------------------------------------
ALI

Query the EMP Table:

SELECT * FROM EMP;

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

Change the Context to DANISH:

begin
set_deptno('DANISH');
end;
/

Verify the Context Setting:

SELECT SYS_CONTEXT('TEST', 'USERNAME') FROM DUAL;

OUTPUT:
SYS_CONTEXT('TEST', 'USERNAME')
------------------------------------
DANISH

SELECT * FROM EMP;

OUTPUT:

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

======================GOOD LUCK==========================

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

IDP Guidebook 2024
No ratings yet
IDP Guidebook 2024
117 pages
Migrate Oracle DB to AWS RDS Using Oracle dump and DMS
No ratings yet
Migrate Oracle DB to AWS RDS Using Oracle dump and DMS
41 pages
K Scheme DMS PR1-13
No ratings yet
K Scheme DMS PR1-13
7 pages
Oracle SQL-Lab Set
No ratings yet
Oracle SQL-Lab Set
10 pages
Products Catalog 13-07-2020 3
No ratings yet
Products Catalog 13-07-2020 3
71 pages
Masters in Accounting thesis MIDLANDS STATE UNIVERSITY Nesbert Jiyane (1)
No ratings yet
Masters in Accounting thesis MIDLANDS STATE UNIVERSITY Nesbert Jiyane (1)
100 pages
Physical Geography in Tamil
No ratings yet
Physical Geography in Tamil
47 pages
mth603 Solved Subjective Question For Mid Term
No ratings yet
mth603 Solved Subjective Question For Mid Term
74 pages
Spa-9-Q2-Module 3
No ratings yet
Spa-9-Q2-Module 3
2 pages
RDBMS ai
No ratings yet
RDBMS ai
58 pages
Dbms r20 Lab Manual Final
No ratings yet
Dbms r20 Lab Manual Final
48 pages
Overview of PL/SQL: Presented For GCP-EBDP Team (AT & T) 22 December 2008
No ratings yet
Overview of PL/SQL: Presented For GCP-EBDP Team (AT & T) 22 December 2008
78 pages
Subqueries Operators and Derived Tables in SQL
No ratings yet
Subqueries Operators and Derived Tables in SQL
185 pages
DSIS C03 Access Control VPD (1)
No ratings yet
DSIS C03 Access Control VPD (1)
38 pages
De Broglie's Thesis
100% (2)
De Broglie's Thesis
81 pages
M.Sc. - I.T.: Adbms
No ratings yet
M.Sc. - I.T.: Adbms
64 pages
Master Meter Handbook
No ratings yet
Master Meter Handbook
5 pages
computer-instructor-trb-exam-unit-1-study-material-tamil-medium
No ratings yet
computer-instructor-trb-exam-unit-1-study-material-tamil-medium
27 pages
Lab Sheets Manual (Complete)
No ratings yet
Lab Sheets Manual (Complete)
59 pages
Dbms Lab Assignment 3new
No ratings yet
Dbms Lab Assignment 3new
15 pages
Data Base Management System: Lab Assignment-5
No ratings yet
Data Base Management System: Lab Assignment-5
8 pages
DMS Pract Exam
No ratings yet
DMS Pract Exam
41 pages
PL/SQL
50% (6)
PL/SQL
3 pages
Action Plan in Mathematics Grade 4-Integrity
100% (1)
Action Plan in Mathematics Grade 4-Integrity
2 pages
PostgreSQL Doc
No ratings yet
PostgreSQL Doc
34 pages
Job Portal Queries Completed-2
No ratings yet
Job Portal Queries Completed-2
62 pages
Assignment: SYBCA-DIV-1-SEM-3 Rdbms Roll No-77
No ratings yet
Assignment: SYBCA-DIV-1-SEM-3 Rdbms Roll No-77
20 pages
OMN-202405-111405-1-Course_notes-v1
No ratings yet
OMN-202405-111405-1-Course_notes-v1
181 pages
Koletzke Lock It Down PLSQL Security Features
No ratings yet
Koletzke Lock It Down PLSQL Security Features
17 pages
Screenshot 2024-07-02 at 2.25.21 PM
No ratings yet
Screenshot 2024-07-02 at 2.25.21 PM
89 pages
Bootstrapping in Small Firms An Empirical Analysis of Change Over Time
No ratings yet
Bootstrapping in Small Firms An Empirical Analysis of Change Over Time
15 pages
8 Oracle Plsql Part2 m8 Slides
No ratings yet
8 Oracle Plsql Part2 m8 Slides
16 pages
ATS RXT Manual
No ratings yet
ATS RXT Manual
60 pages
DOC-20240315-WA0002 (1)
No ratings yet
DOC-20240315-WA0002 (1)
31 pages
mast3r
No ratings yet
mast3r
7 pages
PRACTICAL - 11 To 20
No ratings yet
PRACTICAL - 11 To 20
11 pages
Oracle Notes
No ratings yet
Oracle Notes
7 pages
Information & Management: Hong Zhang, Yaobin Lu, Sumeet Gupta, Ling Zhao
No ratings yet
Information & Management: Hong Zhang, Yaobin Lu, Sumeet Gupta, Ling Zhao
14 pages
Odette ETI9
100% (1)
Odette ETI9
23 pages
handouts 1_101631
No ratings yet
handouts 1_101631
8 pages
SQL Server Architecture - A basic guide to MSSQL
No ratings yet
SQL Server Architecture - A basic guide to MSSQL
6 pages
ABAP HR-1
No ratings yet
ABAP HR-1
10 pages
PL SQL Queries
100% (1)
PL SQL Queries
131 pages
master487
No ratings yet
master487
7 pages
DBMS LAB MANUAL
No ratings yet
DBMS LAB MANUAL
20 pages
Logical Layer: The Relational Data Model + SQL
No ratings yet
Logical Layer: The Relational Data Model + SQL
30 pages
Auda PDF
No ratings yet
Auda PDF
19 pages
day3 live
No ratings yet
day3 live
9 pages
Dbms Manual
No ratings yet
Dbms Manual
21 pages
Harsh
No ratings yet
Harsh
21 pages
HR - Code SQL
No ratings yet
HR - Code SQL
4 pages
Advanced RDBMS: Rdbms Lab Table Creation Create The Following Tables
No ratings yet
Advanced RDBMS: Rdbms Lab Table Creation Create The Following Tables
14 pages
Grade-8-Accomplishment-Report-SY-2021-2022
No ratings yet
Grade-8-Accomplishment-Report-SY-2021-2022
11 pages
4
No ratings yet
4
4 pages
There Was A Girl Name
No ratings yet
There Was A Girl Name
2 pages
CSC239 Fall 2023 Section 60 Oracle Lab Test 1
No ratings yet
CSC239 Fall 2023 Section 60 Oracle Lab Test 1
2 pages
Sudharsanam Vidyaashram: Computer Science
No ratings yet
Sudharsanam Vidyaashram: Computer Science
18 pages
Balance of Power Pol Science Major Unit 5
No ratings yet
Balance of Power Pol Science Major Unit 5
22 pages
Oracle SQL Queries On Emp Table 1 To 235
100% (2)
Oracle SQL Queries On Emp Table 1 To 235
27 pages
Aneesh Panchal 2 K20 MC21
No ratings yet
Aneesh Panchal 2 K20 MC21
27 pages
Employee_Management_System_Database_Design
No ratings yet
Employee_Management_System_Database_Design
3 pages
ALTUM Datasheet
No ratings yet
ALTUM Datasheet
2 pages
SQL Performance Tunning
No ratings yet
SQL Performance Tunning
11 pages
Oracle PL_SQL Optimization
No ratings yet
Oracle PL_SQL Optimization
5 pages
Temperature Derating Data
No ratings yet
Temperature Derating Data
1 page
SQL Project
No ratings yet
SQL Project
17 pages
LAb1 - 4 - BTech - Labmanual - DBS - 2022
No ratings yet
LAb1 - 4 - BTech - Labmanual - DBS - 2022
16 pages
PL SQL
No ratings yet
PL SQL
3 pages
OPen Source
No ratings yet
OPen Source
27 pages
Resilient Seated: Commercial
No ratings yet
Resilient Seated: Commercial
25 pages
Friction
No ratings yet
Friction
31 pages
DBMS Lab Manual
No ratings yet
DBMS Lab Manual
10 pages
Franchising: An Entrepreneur's Guide 4e: by Richard J. Judd and Robert T. Justis
No ratings yet
Franchising: An Entrepreneur's Guide 4e: by Richard J. Judd and Robert T. Justis
20 pages
Understand internal Query Mechanism
No ratings yet
Understand internal Query Mechanism
4 pages
Práctica1y2 Velasco Ricardez LizbethMaría
No ratings yet
Práctica1y2 Velasco Ricardez LizbethMaría
9 pages
RRL SM 10
No ratings yet
RRL SM 10
3 pages
Plsql-Hanfds On Assignment-Incomplete
No ratings yet
Plsql-Hanfds On Assignment-Incomplete
16 pages
Employee Management With SAP RAP
No ratings yet
Employee Management With SAP RAP
17 pages
What Database Administrators Query Before Anything Else
No ratings yet
What Database Administrators Query Before Anything Else
6 pages
Query To Retrieve 1
No ratings yet
Query To Retrieve 1
6 pages
Oracle Streams Step by Step
No ratings yet
Oracle Streams Step by Step
16 pages
Oracle SQL Queries On Emp Table 1 To 235
92% (73)
Oracle SQL Queries On Emp Table 1 To 235
27 pages
Dbms Answers All - Haam's Community
No ratings yet
Dbms Answers All - Haam's Community
55 pages
SMART AND INTELLIGENT BUILDINGS
No ratings yet
SMART AND INTELLIGENT BUILDINGS
2 pages
SQL Model Queries
No ratings yet
SQL Model Queries
31 pages
IEC62304 Template Traceabaility Matrix V1 0
No ratings yet
IEC62304 Template Traceabaility Matrix V1 0
7 pages
Tata Nano Battery From Chennai Maruthi Power
No ratings yet
Tata Nano Battery From Chennai Maruthi Power
3 pages
GMCC EE75H1F-U 1de3 HP BT
67% (3)
GMCC EE75H1F-U 1de3 HP BT
3 pages
Chigo Service Manual Air Condition
No ratings yet
Chigo Service Manual Air Condition
31 pages
1001 Solved Problems in Engineering Mathematics
94% (310)
1001 Solved Problems in Engineering Mathematics
650 pages
Migrating Legacy JavaScript Projects to TypeScript: A Practical Guide
From Everand
Migrating Legacy JavaScript Projects to TypeScript: A Practical Guide
Baldurs L.
No ratings yet
Angular HTTP: Connecting to the REST API
From Everand
Angular HTTP: Connecting to the REST API
Abdelfattah Ragab
No ratings yet
Blazor and API Example: Classroom Quiz Application
From Everand
Blazor and API Example: Classroom Quiz Application
Taurius Litvinavicius
No ratings yet
The SQL Workshop: Learn to create, manipulate and secure data and manage relational databases with SQL
From Everand
The SQL Workshop: Learn to create, manipulate and secure data and manage relational databases with SQL
Frank Solomon
No ratings yet
Hands-On Oracle Application Express Security: Building Secure Apex Applications
From Everand
Hands-On Oracle Application Express Security: Building Secure Apex Applications
Recx
No ratings yet
Salesforce Developer Interview Questions: 1.0, #1
From Everand
Salesforce Developer Interview Questions: 1.0, #1
SFDC TELUGU
No ratings yet
SQL Server: Tips and Tricks - 1
From Everand
SQL Server: Tips and Tricks - 1
Priyanka Agarwal
5/5 (1)
DBMS Lab Manual
From Everand
DBMS Lab Manual
Jitendra Patel
1.5/5 (3)
How to a Developers Guide to 4k: Developer edition, #3
From Everand
How to a Developers Guide to 4k: Developer edition, #3
Xinc Cyberwizard
No ratings yet
Inspiring Powershell Articles
From Everand
Inspiring Powershell Articles
Murat Yildirimoglu
No ratings yet

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.

Oracle RLS_ Step-by-Step Data Access Control

Uploaded by

Oracle RLS_ Step-by-Step Data Access Control

Uploaded by

Implementing Row-Level

Security (RLS) in Oracle

Step 1: Create the User

Create the user PRACTICE1 and grant the required privileges.

CREATE USER PRACTICE1 IDENTIFIED BY practice1;

GRANT CONNECT, RESOURCE TO PRACTICE1;

ALTER USER PRACTICE1 QUOTA UNLIMITED ON USERS;

GRANT CREATE SESSION, CREATE TABLE, CREATE PROCEDURE,

CREATE VIEW, CREATE TRIGGER TO PRACTICE1;

GRANT EXECUTE ON DBMS_RLS TO PRACTICE1;

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

Create the EMP table under the PRACTICE1 schema.

CREATE TABLE EMP (

Step 3: Insert Sample Data

Populate the EMP table with sample records.

INSERT INTO EMP VALUES (222, 'ANNAR', 'MANAGER', NULL,

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

Step 4: Create a Context

Define a context named TEST that will store user-specific attributes.

create context test using set_deptno;

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

Create a procedure to set the context for the TEST namespace.

create or replace procedure set_deptno(p1 varchar2) as

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

Create a function that defines the RLS predicate.

create or replace function dept_predicate(schema_name in varchar2,

Step 7: Apply the RLS Policy

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

Step 8: Test the Implementation

Set the Context for ALI:

Verify the Context Setting:

SELECT SYS_CONTEXT('TEST', 'USERNAME') FROM DUAL;

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

Query the EMP Table:

SELECT * FROM EMP;

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

Verify the Context Setting:

SELECT SYS_CONTEXT('TEST', 'USERNAME') FROM DUAL;

SELECT * FROM EMP;

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

www.linkedin.com/in/daniyaldba/ +923408801269 danishjee05@gmail.com

You might also like

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.