SQL Clone
SQLServerCentral is supported by Redgate
 
Log in  ::  Register  ::  Not logged in
 
 
 


Level 1: An Introduction to Row-Level Security


Level 1: An Introduction to Row-Level Security

Author
Message
Steve Jones
Steve Jones
SSC Guru
SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)

Group: Administrators
Points: 327645 Visits: 20091
Comments posted to this topic are about the item Level 1: An Introduction to Row-Level Security

Follow me on Twitter: @way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
My Blog: www.voiceofthedba.com
HappyGeek
HappyGeek
SSCertifiable
SSCertifiable (6.8K reputation)SSCertifiable (6.8K reputation)SSCertifiable (6.8K reputation)SSCertifiable (6.8K reputation)SSCertifiable (6.8K reputation)SSCertifiable (6.8K reputation)SSCertifiable (6.8K reputation)SSCertifiable (6.8K reputation)

Group: General Forum Members
Points: 6793 Visits: 4383
Nice simple easy to follow article, thank you Steve. Just one observation; where is the link to your sample code?

...
Fat Uncle Dan
Fat Uncle Dan
Grasshopper
Grasshopper (13 reputation)Grasshopper (13 reputation)Grasshopper (13 reputation)Grasshopper (13 reputation)Grasshopper (13 reputation)Grasshopper (13 reputation)Grasshopper (13 reputation)Grasshopper (13 reputation)

Group: General Forum Members
Points: 13 Visits: 182
From Article:
These are the 3 rows with SalesPersonID = 1. The second result set shows 2 rows, each of these with SalesPersonID = 2. This second query was executed as sjones.

From the data, it seems that the 3 rows is where SalesPersonID = 2 and the 2 rows where SalesPersonID = 1. Or am I missing something obvious here?
Chris Stater
Chris Stater
SSC Veteran
SSC Veteran (290 reputation)SSC Veteran (290 reputation)SSC Veteran (290 reputation)SSC Veteran (290 reputation)SSC Veteran (290 reputation)SSC Veteran (290 reputation)SSC Veteran (290 reputation)SSC Veteran (290 reputation)

Group: General Forum Members
Points: 290 Visits: 29
Fat Uncle Dan - Thursday, December 28, 2017 9:47 AM
From Article:
These are the 3 rows with SalesPersonID = 1. The second result set shows 2 rows, each of these with SalesPersonID = 2. This second query was executed as sjones.

From the data, it seems that the 3 rows is where SalesPersonID = 2 and the 2 rows where SalesPersonID = 1. Or am I missing something obvious here?


I noticed the same thing. I don't think you are missing anything, just a typo.
Randy
Randy
SSCrazy
SSCrazy (2.6K reputation)SSCrazy (2.6K reputation)SSCrazy (2.6K reputation)SSCrazy (2.6K reputation)SSCrazy (2.6K reputation)SSCrazy (2.6K reputation)SSCrazy (2.6K reputation)SSCrazy (2.6K reputation)

Group: General Forum Members
Points: 2649 Visits: 866
We have one application with a poorly performing security implementation. Does anybody have any guidance on the performance impact of RLS on a query? Is it easy to avoid or mitigate performance issues?

Randy
Helpdesk: Perhaps Im not the only one that does not know what you are doing. ;-)
Steve Jones
Steve Jones
SSC Guru
SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)

Group: Administrators
Points: 327645 Visits: 20091
cstater - Thursday, December 28, 2017 9:51 AM
Fat Uncle Dan - Thursday, December 28, 2017 9:47 AM
From Article:
These are the 3 rows with SalesPersonID = 1. The second result set shows 2 rows, each of these with SalesPersonID = 2. This second query was executed as sjones.

From the data, it seems that the 3 rows is where SalesPersonID = 2 and the 2 rows where SalesPersonID = 1. Or am I missing something obvious here?


I noticed the same thing. I don't think you are missing anything, just a typo.


typo. Corrected.

Follow me on Twitter: @way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
My Blog: www.voiceofthedba.com
Steve Jones
Steve Jones
SSC Guru
SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)

Group: Administrators
Points: 327645 Visits: 20091
rstone - Thursday, December 28, 2017 10:36 AM
We have one application with a poorly performing security implementation. Does anybody have any guidance on the performance impact of RLS on a query? Is it easy to avoid or mitigate performance issues?


This is a function, really a CROSS APPLY type function added to your queries. If there are indexes, I wouldn't expect there to be much impact from normal query performance. However, YMMV. I'd certainly like to see more people test this at higher scales with specific queries.

If we can get this site upgraded to 2017, I'd like to implement some RLS just to see.

Follow me on Twitter: @way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
My Blog: www.voiceofthedba.com
Steve Jones
Steve Jones
SSC Guru
SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)SSC Guru (327K reputation)

Group: Administrators
Points: 327645 Visits: 20091
Code now attached at the bottom of the article.

Follow me on Twitter: @way0utwest
Forum Etiquette: How to post data/code on a forum to get the best help
My Blog: www.voiceofthedba.com
Go


Permissions

You can't post new topics.
You can't post topic replies.
You can't post new polls.
You can't post replies to polls.
You can't edit your own topics.
You can't delete your own topics.
You can't edit other topics.
You can't delete other topics.
You can't edit your own posts.
You can't edit other posts.
You can't delete your own posts.
You can't delete other posts.
You can't post events.
You can't edit your own events.
You can't edit other events.
You can't delete your own events.
You can't delete other events.
You can't send private messages.
You can't send emails.
You can read topics.
You can't vote in polls.
You can't upload attachments.
You can download attachments.
You can't post HTML code.
You can't edit HTML code.
You can't post IFCode.
You can't post JavaScript.
You can post emoticons.
You can't post or upload images.

Select a forum








































































































































































SQLServerCentral


Search