|
Hi! Can I use with this application the database permissions, like row level securities, object privileges? We set up all of the permissions in the Oracle Database (no application level): all users named in the database. So, we use the "authid current_user" packages. This framework can works thus? Thanks, Tibor |
|
Hi Tibor, Unfortunately, this is not possible in the current release of Formspider. Hi Yalim, I'm so sad about it, because it is so important for us. Our users use the Database with different client (like native SQL, ODBC, web client etc.) with one security system. It is very important for us. It will be possible in the future? Can you feedback me about it? thanks Tibor
(24 Aug '11, 06:47)
Tibor
Tibor, Please see my answer below.
(25 Aug '11, 12:08)
Yalim K. Gerger ♦
|
|
Tibor, If there are API's to query your security repository, it is possible to integrate it with Formspider. I think we have to look more closely at how you implemented your security and think of way to integrate it into Formspider applications. Yalim, Our security is so complex and it is works perfectly and based on the Database features. We haven't got our repository but we can read the repository. for example: SELECT * from DBA_POLICIES; / (you can see here, what package and function grantee the row level securities) / SELECT * from sys.table_privileges; we have some views what contains condition: select ... from fact_table a, priv_table b where ... and a.xx_column = b.xx_column and b.user_code = user our securities based on roles and user privileges. Now we use "authid current_user" packages and parse the Ora error codes
(25 Aug '11, 23:54)
Tibor
Yalim, ... And we use the database "fined grained audit" too. you can see that here: http://www.oracle-base.com/articles/10g/DatabaseSecurityEnhancements10g.php#fga so we have to log into the database by the real user and we have to run the select by the real user, no technical user.
(26 Aug '11, 05:22)
Tibor
Tibor, We had a meeting about this issue today. We are optimistic that we can solve this problem. Here is what we need from you. Could you please build a very simple form that demonstrates how you implement security with one or two examples. In order to make it all work here locally, we will need the form fmb and the DDL's to set up the test users, grants etc...We understand what you with your security, but we want to test with the exact scenario. Could you please provide a form and the necessary DDL's to replicate a test case here locally?
(26 Aug '11, 12:16)
Yalim K. Gerger ♦
Sorry, I didn't see that in the last two days. I'll write examples today or tomorrow.
(28 Aug '11, 23:13)
Tibor
Yalim, could you give me your e-mail address? The character numbers not enough here for my script.
(31 Aug '11, 04:36)
Tibor
yalim.gerger at gerger.co
(01 Sep '11, 09:31)
Yalim K. Gerger ♦
showing 5 of 6
show 1 more comments
|
|
Hi Tibor, My email is yalim.gerger at gerger.co |
