How to give select/update/delete permission to SP only

Level Extreme platform

Subscription

Corporate profile

Products & Services

Support

Legal

Français

How to give select/update/delete permission to SP only

Message

From

15/06/2005 09:54:35

Kelly Conway
Lee's Summit, Missouri, United States

15/06/2005 02:00:34

Virusim Sim
Singapore, Singapore

General information

Forum:

Microsoft SQL Server

Category:

Stored procedures, Triggers, UDFs

Title:

Re: How to give select/update/delete permission to SP only

Miscellaneous

Thread ID:

01023344

Message ID:

01023481

Views:

Programmatically, you do this with the DENY and GRANT T-SQL statements. You can look those up in SQL Server Books Online (the help file that ships with SQL Server) to get the full syntax. But as an example, say you have an Authors table, a GetAuthors SP and an account named Fred. You could use DENY and GRANT as shows below to allow Fred to only access the Authors table though your SP and no other way.

DENY ALL [PRIVILEGES] ON Authors TO Fred
GO

GRANT EXECUTE ON GetAuthors TO Fred
GO

>Hi,
>
>I read that one of the security way is to prevent user
>all access to the database tables from select/update/delete command.
>
>howeve, it recommend us to give permission for Stored procedures (SP)
>to select those tables. How do I do it programmtically.
>
>Any other way to improve my SQL server 2000 security
>
>
>pls advise. Thank

Map

View

Click here to load this message in the networking platform