Post reply

Authorisation to append field to a table

  • August 9, 2007 at 2:45 am

    #174777

    I have a web application that logs into SQL 2000 database as a single user set up as SQL Server Authentication.  The user has resticted access as to what it can and can't do.

    One of the tasks that needs to be done when a specific stored procedure is executed is to append a column to a table which requires higher security than the user has.

    I have tried using the sp_start_job to start a job that will execute the command but the user has to be the owner and if it is the owner it can't perform the task because the owner does not have the authorisation level to do this!

    Any one got any ideas as to how this could be done?

  • August 9, 2007 at 6:06 am

    #725687

    I'm assuming you don't want the user to be a member of ddl_admin?

  • August 9, 2007 at 6:16 am

    #725689

    Ideally I just want them to access a single stored procedure which would give the limited functionality required.

     

  • August 9, 2007 at 6:25 am

    #725692

    To alter a table you need to be the table owner, sysadmin, dbo or ddl_admin, so if you want it all done in that 1 stored procedure, you will have to extend the permissions.

    Also, one question...How often is this stored procedure called and will it always append one column to the table?  I'm asking because you could end up with an extremely wide table.

  • August 9, 2007 at 6:31 am

    #725693

    The table is used to store each level of a hierarchy in a particular transaction to make it easy for reporting.  Whenever a new level(/depth) to the hierarchy is created a new column needs to be added to the table.  This shouldn't happen very often once the system is set up.

    I suppose the another way round it is to run a job overnight to put any extra columns in the table using a user that has the relevant permissions.

     

    Andrew

  • August 9, 2007 at 6:59 am

    #725703

    I was going to suggest something similar.  A job could be run every hour or so to add any columns.  You could create some kind of work_pending table and use that as the source for which to create the new columns.

  • August 9, 2007 at 7:47 am

    #725717

    Clive,

    Thanks for your help

    rgds

    Andrew

Viewing 7 posts - 1 through 6 (of 6 total)

You must be logged in to reply to this topic. Login to reply