Home Forums Article Discussions Article Discussions by Author Discuss Content Posted by Robert Marda When to Use Dynamic SQL RE: When to Use Dynamic SQL

  • February 11, 2002 at 7:23 am

    #423655

    In regards to what Robert said.

    quote:

    In our database all users by default have read permissions so for us this is not an issue.

    I prefer to deal with this by creating roles to handle. First I hae a role called urProcExec which is the role for people with execute rights on the procedures and then I create a role called urReadTbl and put urProcExec in it giving rights on all tables to be read. This makes it easier for me to keep up with permissions and I can prevent user access better on tables that need not have any permissions in regards to procedures with dynamic SQL.