How To - Record level security

Level Extreme platform

Subscription

Corporate profile

Products & Services

Support

Legal

Français

How To - Record level security

Message

From

13/04/2009 15:50:54

Mike Cole
Yellow Lab Technologies
Stanley, Iowa, United States

13/04/2009 15:39:51

Brandon Harker
Sebae Data Solutions, Inc.
Florida, United States

General information

Forum:

Microsoft SQL Server

Category:

Security

Title:

Re: How To - Record level security

Miscellaneous

Thread ID:

01394657

Message ID:

01394662

Views:

>In my current project a user should only be allowed to delete a record that they created... but they have permission to view all records regardless of who created them. I've discovered how to determine the current username via CURRENT_USER and am using that to insert into the appropriate record who the record belongs to. So here's the question:
>
>Is security-by-record-ownership a roll-your-own type solution or does SQL Server (I'm using 2008) have something built in for this?

Are you using Windows Authentication or SQL Server Authentication?

Very fitting: http://xkcd.com/386/

Map

View

Click here to load this message in the networking platform