IWETHEY v. 0.3.0 | TODO
1,095 registered users | 0 active users | 0 LpH | Statistics
Login | Create New User
IWETHEY Banner

Welcome to IWETHEY!

IWETHEY Home / IWETHEY Board / Databases Forum / What's the application?
Post #119,134
by ChrisR
9/26/03 7:42:43 PM
Reply
New What's the application?
And what sort of controls do you need on the transactions?

If it is a heavy duty OLTP application then you better funnel all the inserts and updates through stored procedures or you gonna have locking problems. If it's a data warehouse, most of the data should be locked down anyhow since it's of a historical nature.

About the only exception to this rule is where there's a middle tier betwixt the client and the database. Even in that scenario, allowing the middle tier direct access to the tables basically means that the client is still required to go through the necessary processes.

From the read perspective (SELECT), you could possibly allow a little more freedom. But you're still better off creating filtered views - even if that view is at the current time little more than a straight output of the table. It allows you to clamp down on access if you ever need that facility (i.e. access rights can be enforced down to the row level - not just at the table level). If you want to have updateable views, the INSTEAD OF triggers can provide a facility to treat the update any way you'd like.

And yes, I do think you are being paranoid. But the second you look at things from the perspective of being a DBA, a heavy dose of paranoia is part of the job description.
Post #119,136
by ChrisR
9/26/03 7:52:30 PM
Reply
New While I'm on the subject
Register me as one that believes the distinction between functions and views is arbitrary. A view, as it stands in most historical implementations, should be viewed as a function that has zero parameters. It should also be a allowed that a view can be parameterized as well, allowing you to treat it as a function that returns a resultset. Either that or allow Stored Procedures that return resultsets to be allowed to participate as a source in the FROM of the sql construction.
     Am I overly paranoid? - (mmoffitt) - (10) - Sept. 26, 2003, 05:08:22 PM EDT
         Not overkill. - (admin) - Sept. 26, 2003, 05:21:14 PM EDT
         Slight overkill - (JayMehaffey) - (4) - Sept. 26, 2003, 05:54:38 PM EDT
             More than security. Maintenance. - (admin) - (2) - Sept. 26, 2003, 06:00:13 PM EDT
                 In theory - (JayMehaffey) - (1) - Sept. 26, 2003, 06:43:11 PM EDT
                     I'm talking about in PL/SQL, and this isn't theory. - (admin) - Sept. 26, 2003, 06:55:56 PM EDT
             Sometimes you need a view - (orion) - Sept. 26, 2003, 09:54:35 PM EDT
         What's the application? - (ChrisR) - (1) - Sept. 26, 2003, 07:42:43 PM EDT
             While I'm on the subject - (ChrisR) - Sept. 26, 2003, 07:52:30 PM EDT
         Small intRAnet, overkill. Big public site, no. -NT - (tablizer) - Sept. 26, 2003, 09:42:58 PM EDT
         not at all - (cforde) - Sept. 28, 2003, 02:24:48 AM EDT

Better than a VBF, any day of the week.
101 ms