Technical Article

Grant permissions to a role

,

A very simple script that will first create a role (if it does not exist yet) and then grant full permissions on tables, views and stored procedures to the newly created role. Of course, you can add any filtering (i.e. grant permissions only for tables beginning with "abc") or grant partial permissions (SELECT or DELETE only) for certain roles.

IF NOT EXISTS (SELECT * FROM dbo.sysusers WHERE name = N'MyNewRole' AND uid > 16399)
EXEC sp_addrole N'MyNewRole'
GO

DECLARE
@TabName varchar(100),
@SPName varchar(100),
@ViewName varchar(100)
-- Tables 
DECLARE TabCursor CURSOR FAST_FORWARD LOCAL FOR
SELECT TABLE_NAME FROM information_schema.tables WHERE TABLE_TYPE='BASE TABLE'
OPEN TabCursor

FETCH NEXT FROM TabCursor INTO @TabName
WHILE @@FETCH_STATUS = 0
BEGIN
EXEC ('GRANT ALL ON [' + @TabName + '] TO MyNewRole')
FETCH NEXT FROM TabCursor INTO @TabName
END
CLOSE TabCursor
DEALLOCATE TabCursor
-- Views
DECLARE VCursor CURSOR FAST FORWARD LOCAL FOR
SELECT TABLE_NAME FROM information_schema.views
OPEN VCursor

FETCH NEXT FROM VCursor INTO @ViewName
WHILE @@FETCH_STATUS = 0
BEGIN
EXEC ('GRANT ALL ON [' + @ViewName + '] TO MyNewRole')
FETCH NEXT FROM VCursor INTO @ViewName
END
CLOSE VCursor
DEALLOCATE VCursor
-- Procedures
DECLARE SCursor CURSOR FAST_FORWARD LOCAL FOR
SELECT name FROM sysobjects WHERE type = 'p'
OPEN SCursor

FETCH NEXT FROM SCursor INTO @SPName
WHILE @@FETCH_STATUS = 0
BEGIN
EXEC ('GRANT ALL ON [' + @SPName + '] TO MyNewRole')
FETCH NEXT FROM SCursor INTO @SPName
END
CLOSE SCursor
DEALLOCATE SCursor

Rate

You rated this post out of 5. Change rating

Share

Join the discussion and add your comment

Share

Rate

You rated this post out of 5. Change rating

Related content

Technical Article

Shows Tables for a Given Database from DOS

If you are using OSQL or ISQL from DOS querys are really hard to use, because the result is to big for the screen. With this procedure, you can especify from wich column to wich column show the list of tables. For Example: proc_tables master, 3, 10 will show you only a short list of […]

You rated this post out of 5. Change rating

2001-10-28

744 reads

Technical Article

Run a Script Against All User Databases

Now you can run administrative T-SQL tasks against all your databases in one shot. Very usefull for environments that have a seperate database for each client, ASP's, etc. It's pretty straight forward and can be used for almost any task. This example Looks for a table and prints the database name and selects from the […]

You rated this post out of 5. Change rating

2001-10-21

3,105 reads

Technical Article

Find Longstanding Open Transactions

Ever forget to commit a transaction and then find out hours later that there is deadlocked transactions all over your database server? Worse yet has one of your coworkers done this to your database server? Never again, this stored procedure will net send the machine that has an open transaction, and send you (The DBA) […]

4 (1)

You rated this post out of 5. Change rating

2001-10-08

9,038 reads