On 29 August 2014 08:53, Dimitry Sibiryakov <s...@ibphoenix.com> wrote:
> Actually, they have to ask themselves if the sources are precious
> enough to waste time
> for their protection. AFAIK, database itself is usually pointless without
> application that
> works with it.
>
>
Not always true.
I have databases that contain no data - they are just a series of views,
triggers and procedures designed to provide access to a different database.
Such 'Surfacing' databases are used for ODBC/JDBC/OLAP clients who need
to see tables/columns in their own language while allowing the use of
modern data cube analysis tools.
Such a database is designed for general access from any client.
Some developers who do not have mandated language laws, design their
database for access by such third party tools.
This issue could be solved by extending the GRANT/REVOKE DDL syntax such as
adding a VISIBLE [AS NULL] option to the privileges list - ie if you
revoke visible from a column, it is as if that column does not exist. If
you revoke visible with the as null option, the column exists for you, but,
returns a null as a result.
GRANT
{*<privileges>* ON *<object>* | *role*}
TO *<grantees>*
[WITH {GRANT|ADMIN} OPTION]
[{GRANTED BY | AS} [USER] *grantor*]
<privilege_list> = SELECT
| DELETE
| INSERT
| UPDATE
| VISIBLE[AS NULL]
------------------------------------------------------------------------------
Slashdot TV.
Video for Nerds. Stuff that matters.
http://tv.slashdot.org/
Firebird-Devel mailing list, web interface at
https://lists.sourceforge.net/lists/listinfo/firebird-devel
