| Oracle® Database Vault Administrator's Guide 11g Release 1 (11.1) Part Number B31222-01 |
|
|
View PDF |
| Oracle® Database Vault Administrator's Guide 11g Release 1 (11.1) Part Number B31222-01 |
|
|
View PDF |
You can modify your applications to use the functions within the DVSYS.DBMS_MACSEC_ROLES package to check the authorization for a user or to set an Oracle Database Vault secure application role. The DVSYS.DBMS_MACSEC_ROLES package is available to all users.
Chapter 8, "Configuring Secure Application Roles for Oracle Database Vault" describes secure application roles in detail. See also Appendix G, "Oracle Database Vault DVSYS.DBMS_MACUTL Package" for a set of general-purpose utility functions that you can use with the secure application role functions.
Table F-1 lists the DVSYS.DBMS_MACSEC_ROLES package functions.
Table F-1 DVS.DBMS_MACSEC_ROLES Oracle Label Security Configuration Functions
| Function | Description |
|---|---|
|
|
Checks whether the user invoking the method is authorized to use the specified Oracle Database Vault secure application role. Returns a |
|
|
Issues the |
This function checks whether the user invoking the method is authorized to use the specified Oracle Database Vault secure application role. It returns a BOOLEAN value.
Syntax
CAN_SET_ROLE( p_role VARCHAR2);
Parameters
Table F-2 CAN_SET_ROLE Parameter
| Parameter | Description |
|---|---|
|
|
Role name. To find existing secure application roles, use the |
This function issues the SET ROLE statement for an Oracle Database Vault secure application role. If a rule set that is associated with the role evaluates to false, then the role is not set.
Syntax
SET_ROLE( p_role VARCHAR2);
Parameters
Table F-3 SET_ROLE Parameter
| Parameter | Description |
|---|---|
|
|
Role name. To find existing secure application roles in the current database instance, use the |
