SyntaxFix

[sql] SQL permissions for roles

I'm a bit confused about permissions in SQL

I have created a medical database.

As a script I'm creating a doctor role and I want to say they can perform updates on tables 1,2 and 3.

The database though actually contains 5 tables.

does it mean that they wont be able to update 4 and 5 ?

or will i have to explicitly say deny update on tables 4 and 5 for the doctor role ?

This question is related to sql sql-server

The answer is

SQL-Server follows the principle of "Least Privilege" -- you must (explicitly) grant permissions.

'does it mean that they wont be able to update 4 and 5 ?'

If your users in the doctor role are only in the doctor role, then yes.

However, if those users are also in other roles (namely, other roles that do have access to 4 & 5), then no.

More Information: http://msdn.microsoft.com/en-us/library/bb669084%28v=vs.110%29.aspx

USE DataBaseName; GO --------- CREATE ROLE --------- CREATE ROLE Doctors ; GO  ---- Assign Role To users -------  CREATE USER [Username] FOR LOGIN [Domain\Username] EXEC sp_addrolemember N'Doctors', N'Username'  ----- GRANT Permission to Users Assinged with this Role----- GRANT ALL ON Table1, Table2, Table3 TO Doctors; GO

Source: Stackoverflow.com

Examples related to sql

Passing multiple values for same variable in stored procedure SQL permissions for roles Generic XSLT Search and Replace template Access And/Or exclusions Pyspark: Filter dataframe based on multiple conditions Subtracting 1 day from a timestamp date PYODBC--Data source name not found and no default driver specified select rows in sql with latest date for each ID repeated multiple times ALTER TABLE DROP COLUMN failed because one or more objects access this column Create Local SQL Server database

Examples related to sql-server

Passing multiple values for same variable in stored procedure SQL permissions for roles Count the Number of Tables in a SQL Server Database Visual Studio 2017 does not have Business Intelligence Integration Services/Projects ALTER TABLE DROP COLUMN failed because one or more objects access this column Create Local SQL Server database How to create temp table using Create statement in SQL Server? SQL Query Where Date = Today Minus 7 Days How do I pass a list as a parameter in a stored procedure? SQL Server date format yyyymmdd

Tags

Trail Jericho-html-parser Bcel Package Line-breaks Iphone-web-app Advantage-database-server Mvvm-light Validates-uniqueness-of Base-sdk String-comparison Character-reference Invocation-api Access-synchronization Sid Gesture-recognition Ogr .net-1.0 Object-composition Inlines Css3pie Column-aggregation Gwt-widgets Yammer Proxy-classes Pci Mstsc Stun T4mvc Video-gallery Json-rpc Referenceerror String-decoding Target-platform Bins Ipconfig Osb Subsonic2.2 Lilypond Charts User-interface Mysql-error-1452 Visiblox Argument-validation 3nf Database-diagramming Defaultmodelbinder Feof Graph-drawing Ajax Permanent-generation Gpgpu Sequel Geonames Shopify Windows-server-2000 Libsystem Promotion-code Bmp Viewer Channel-api Custom-view Udb Anonymous-scope Pen Desktop-wallpaper Rule Standard-icons Modeladmin Collectionviewsource Nested-checkboxes Dotimage Sorenson-360 Oberon Wtl Monkeypatching Display-dpi Npapi Hyperlink Simplexmlrpcserver Dbnull Azure-web-roles Pvrtc Sdl-opengl C10k Jcomponent Haddock Multi-query Formatted-text Working-copy Diff3 Perl-io Word-completion Sha256 Primefaces Intellilock Delimited-text Mergetool Tthread Choice