Naresh Kumar Margam

Access Control Statements in Stored Procedures

Posted on Aug 08, 2016 at 11:47 AM 22 Views

Hi,

I have created a Odata service on Sys.Users view to expose the User details as a Service. I need to enhance the service to perform CUD (Create, Update and Delete) operations. For this, I'm using the Odata Exit features where I call different stored procedures for respective operations.

In the procedure, I would like to use Access Control Statements - Create User, ALTER User and DROP User. But the system doesn't suggest these keywords inside the Procedure.

Could you please suggest if my approach is correct ? If so, why is it the system not allowing to use these keywords. I tried using ALTER User and the error says - 'Alter is incorrect or misplaced'.

Any suggestions ?

Regards,

Naresh

Add a comment

2 Answers

Sort by:

Votes

Newest

Oldest

This answer has been deleted.

This answer has been undeleted.

Lars Breddemann

Posted on Aug 08, 2016 at 10:42 PM

0
Show your code. We cannot guess what is wrong with it...
- Add a Comment
- Alert Moderator
- Share
Add a comment
10|10000 characters needed characters left characters exceeded
1 Comment
- Naresh Kumar Margam
  
  Aug 10, 2016 at 09:14 AM
  
  Hi Lars, Attached the code in the thread below. Any suggestions or comments would be highly appreciated. Reg, Naresh
  - Like 0
  - Share
  - Alert Moderator
Comment on This Answer

Comment
This answer has been deleted.

This answer has been undeleted.

Pratik Doshi

Posted on Aug 09, 2016 at 03:38 AM

0
Hi Naresh ,

I think it is related to dynamic sql.

You cannot write plain vanilla create,alter or other DDL statements in sql script.

Please search for dynamic sql in hana you will have n number of threads for these.

have a look at these thread, it might help you.

http://www.hdespot.com/2015/05/01/how-to-perform-mass-user-creation-role-assignment/

-

Pratik
- Add a Comment
- Alert Moderator
- Share
Add a comment
10|10000 characters needed characters left characters exceeded
5 Comments
- Pratik Doshi Naresh Kumar Margam
  
  Aug 12, 2016 at 03:24 AM
  
  Hi Naresh ,
  
  The user with whom you are executing the privileges should have the
  
  USER ADMIN roles
  
  OR
  
  Just change the procedure with line as SQL SECURITY DEFINER so it will be executed with the privileges of _SYS_REPO user.
  
  -
  
  Pratik
  - Like 0
  - Share
  - Alert Moderator
Comment on This Answer

Comment

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.

Rules of Engagement

Know someone who can answer? Share a link to this question.

Attachments: Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.

Access Control Statements in Stored Procedures

Add a comment

Assigned Tags

Related questions

2 Answers

Add a comment

Add a comment

Before answering