• Post Reply Bookmark Topic Watch Topic
  • New Topic

Aplication Servers and Row/Column level security

 
Carlos Decoppet
Greenhorn
Posts: 3
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
In oracle database there are three methods for implementing row/column level security :
- views and access control over these views.
- Virtual Private Database.
- Oracle Label Security.
But all of them use the user account utilized to logging into database.

The context of my question is :

user --> webServer --> EJBserver --> DataBase

In a application server (oracleAS, jobss, etc) you create a connection pool for connecting againts database. This connection pool utilize a predefined user/password for all the connection.
But each user use a different user/pass for logging into web application.

So...
Is there any maner to implement row/level security in this context, using account utilized in web application inestead of account utilized in connection pool?


thanks.
 
Jeanne Boyarsky
author & internet detective
Marshal
Posts: 35719
412
Eclipse IDE Java VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Carlos,
Most people use different datasources (and therefore connection pools) for the different types of rights.

Also, please check your private messages about an important administrative matter.
 
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!