New post
Discussion
· Sep 11, 2023

Manage SQL accesses to all or some schemas in a database, instead of managing it a the tables level.

#Security #SQL #Caché #Ensemble #InterSystems IRIS #InterSystems IRIS for Health

Currently, the SQL privileges (SELECT, INSERT, UPDATE, DELETE) are managed at the tables level, which can be very tedious when you have to administer many roles in an organization, and need to keep them sync with a constantly evolving data models.
By managing privileges at the schemas level, will allow to give SELECT and other DML privileges to *all* or *several schemas* to a role|user, fixing the need to manually synchronize the new tables|views to the roles.

If you agree, I invite you to vote for this idea.

Discussion (6)2
Log in or sign up to continue
Alexander Koblov · Sep 11, 2023

I believe IRIS already can GRANT privileges on schema:

You can use SCHEMA schema-name as the object-list value to grant the object-privilege to all of the tables, views, and stored procedures in the named schema, in the current namespace. The following example grants this user SELECT privilege for all objects in the Sample schema.

GRANT SELECT ON SCHEMA Sample TO Deborah

https://docs.intersystems.com/irislatest/csp/docbook/DocBook.UI.Page.cls...

3 0