SQL Clone
SQLServerCentral is supported by Redgate
 
Log in  ::  Register  ::  Not logged in
 
 
 


Level 1: An Introduction to Row-Level Security


Level 1: An Introduction to Row-Level Security

Author
Message
Steve Jones
Steve Jones
SSC Guru
SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)

Group: Administrators
Points: 594124 Visits: 21007
Comments posted to this topic are about the item Level 1: An Introduction to Row-Level Security

Follow me on Twitter: @way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
My Blog: www.voiceofthedba.com
HappyGeek
HappyGeek
SSChampion
SSChampion (14K reputation)SSChampion (14K reputation)SSChampion (14K reputation)SSChampion (14K reputation)SSChampion (14K reputation)SSChampion (14K reputation)SSChampion (14K reputation)SSChampion (14K reputation)

Group: General Forum Members
Points: 14447 Visits: 7022
Nice simple easy to follow article, thank you Steve. Just one observation; where is the link to your sample code?

...
Fat Uncle Dan
Fat Uncle Dan
SSC Rookie
SSC Rookie (33 reputation)SSC Rookie (33 reputation)SSC Rookie (33 reputation)SSC Rookie (33 reputation)SSC Rookie (33 reputation)SSC Rookie (33 reputation)SSC Rookie (33 reputation)SSC Rookie (33 reputation)

Group: General Forum Members
Points: 33 Visits: 210
From Article:
These are the 3 rows with SalesPersonID = 1. The second result set shows 2 rows, each of these with SalesPersonID = 2. This second query was executed as sjones.

From the data, it seems that the 3 rows is where SalesPersonID = 2 and the 2 rows where SalesPersonID = 1. Or am I missing something obvious here?
Chris Stater
Chris Stater
Old Hand
Old Hand (332 reputation)Old Hand (332 reputation)Old Hand (332 reputation)Old Hand (332 reputation)Old Hand (332 reputation)Old Hand (332 reputation)Old Hand (332 reputation)Old Hand (332 reputation)

Group: General Forum Members
Points: 332 Visits: 29
Fat Uncle Dan - Thursday, December 28, 2017 9:47 AM
From Article:
These are the 3 rows with SalesPersonID = 1. The second result set shows 2 rows, each of these with SalesPersonID = 2. This second query was executed as sjones.

From the data, it seems that the 3 rows is where SalesPersonID = 2 and the 2 rows where SalesPersonID = 1. Or am I missing something obvious here?


I noticed the same thing. I don't think you are missing anything, just a typo.
Randy
Randy
SSCarpal Tunnel
SSCarpal Tunnel (4.5K reputation)SSCarpal Tunnel (4.5K reputation)SSCarpal Tunnel (4.5K reputation)SSCarpal Tunnel (4.5K reputation)SSCarpal Tunnel (4.5K reputation)SSCarpal Tunnel (4.5K reputation)SSCarpal Tunnel (4.5K reputation)SSCarpal Tunnel (4.5K reputation)

Group: General Forum Members
Points: 4465 Visits: 920
We have one application with a poorly performing security implementation. Does anybody have any guidance on the performance impact of RLS on a query? Is it easy to avoid or mitigate performance issues?

Randy
Helpdesk: Perhaps Im not the only one that does not know what you are doing. ;-)
Steve Jones
Steve Jones
SSC Guru
SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)

Group: Administrators
Points: 594124 Visits: 21007
cstater - Thursday, December 28, 2017 9:51 AM
Fat Uncle Dan - Thursday, December 28, 2017 9:47 AM
From Article:
These are the 3 rows with SalesPersonID = 1. The second result set shows 2 rows, each of these with SalesPersonID = 2. This second query was executed as sjones.

From the data, it seems that the 3 rows is where SalesPersonID = 2 and the 2 rows where SalesPersonID = 1. Or am I missing something obvious here?


I noticed the same thing. I don't think you are missing anything, just a typo.


typo. Corrected.

Follow me on Twitter: @way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
My Blog: www.voiceofthedba.com
Steve Jones
Steve Jones
SSC Guru
SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)

Group: Administrators
Points: 594124 Visits: 21007
rstone - Thursday, December 28, 2017 10:36 AM
We have one application with a poorly performing security implementation. Does anybody have any guidance on the performance impact of RLS on a query? Is it easy to avoid or mitigate performance issues?


This is a function, really a CROSS APPLY type function added to your queries. If there are indexes, I wouldn't expect there to be much impact from normal query performance. However, YMMV. I'd certainly like to see more people test this at higher scales with specific queries.

If we can get this site upgraded to 2017, I'd like to implement some RLS just to see.

Follow me on Twitter: @way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
My Blog: www.voiceofthedba.com
Steve Jones
Steve Jones
SSC Guru
SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)SSC Guru (594K reputation)

Group: Administrators
Points: 594124 Visits: 21007
Code now attached at the bottom of the article.

Follow me on Twitter: @way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
My Blog: www.voiceofthedba.com
Go


Permissions

You can't post new topics.
You can't post topic replies.
You can't post new polls.
You can't post replies to polls.
You can't edit your own topics.
You can't delete your own topics.
You can't edit other topics.
You can't delete other topics.
You can't edit your own posts.
You can't edit other posts.
You can't delete your own posts.
You can't delete other posts.
You can't post events.
You can't edit your own events.
You can't edit other events.
You can't delete your own events.
You can't delete other events.
You can't send private messages.
You can't send emails.
You can read topics.
You can't vote in polls.
You can't upload attachments.
You can download attachments.
You can't post HTML code.
You can't edit HTML code.
You can't post IFCode.
You can't post JavaScript.
You can post emoticons.
You can't post or upload images.

Select a forum








































































































































































SQLServerCentral


Search