Re: Separate Schemas for Data and Application?

• From: Yong Huang <yong321@xxxxxxxxx>
• To: "william@xxxxxxxxxxxxxxxxxxxx" <william@xxxxxxxxxxxxxxxxxxxx>
• Date: Wed, 9 Apr 2014 06:54:51 -0700 (PDT)

> It would create a load of extra work for maintaining grants and

> synonyms and generally complicate build scripts for no benefit that...

I agree. We used to enforce the policy of having a data account and a code 
account. In addition to more work, one annoyance is that whenever a new table 
is created in the data account, a new grant, and a synonym (if not prefixing 
"owner." in code and not using "alter session set current_schema") must be 
created in the code account, but this is sometimes missed. We don't grant 
"select any table" to the code account. For a long time, I've wished Oracle to 
allow "grant select,insert,update,delete on <schema> to <grantee>".

Yong Huang

• Follow-Ups:
  • Re: Separate Schemas for Data and Application?
    • From: Igor Racic

Other related posts:

• » Separate Schemas for Data and Application?- Jeff C
• » Re: Separate Schemas for Data and Application?- Juan Carlos Reyes Pacheco
• » RE: Separate Schemas for Data and Application?- Chitale, Hemant K
• » Re: Separate Schemas for Data and Application?- Toon Koppelaars
• » Re: Separate Schemas for Data and Application?- William Robertson
• » RE: Separate Schemas for Data and Application?- Dave Morgan
• » Re: Separate Schemas for Data and Application? - Yong Huang
• » Re: Separate Schemas for Data and Application?- Igor Racic
• » Re: Separate Schemas for Data and Application?- Dba DBA

1. Home
2. oracle-l
3. Archive
4. 04-2014

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---