Two types of grants will be made. First, we give table access to the roles; then the roles are granted to the users. Remember from the previous section that the login roles already have the CREATE SESSION privilege and EXECUTE privilege on the TSEC package. These grants follow the matrix, so we’ll provide only a few examples here.

doc grant table and view access to the roles. # -- general access to the views. GRANT select ON approvers_v TO cdgenaccess; GRANT select ON card_holder_v TO cdgenaccess; etc. -- specific object grants. PROMPT ************* cdholder ************* PROMPT PROMPT s,i,u,d PROMPT GRANT select, insert, update, delete ON comment_log TO cdholder; etc. PROMPT s,i,u PROMPT GRANT select, insert, update ON discrep TO cdholder; etc. PROMPT s,i PROMPT PROMPT none PROMPT s PROMPT GRANT select ON card_trans_b TO cdholder; GRANT select ON dispute_code TO cdholder; GRANT select ON dispute_sub_code TO cdholder; GRANT select ON err_log TO cdholder; GRANT select ON card_trans TO cdholder; GRANT select ON def_cost_center TO cdholder; GRANT select ON card_seq TO cdholder; -- views GRANT select ON dept_def_cc_v TO cdholder; PROMPT other grants PROMPT GRANT select, update (reconcile, receive_date, reconcile_date, parent_id, parent_item, reconciled_by_emp) ON card_trans_item_b TO cdholder; PROMPT ************* cdsysadm ************* PROMPT PROMPT s,i,u,d PROMPT GRANT select, insert, update, delete ON def_cost_center TO cdsysadm; etc. PROMPT s,i,u PROMPT GRANT select, insert, ...