Home Forums Article Discussions Article Discussions by Author Discuss Content Posted by Andy Warren Views for Abstraction RE: Views for Abstraction

  • November 1, 2007 at 8:44 am

    #747433

    I don't know if this applies, but I thought I would throw it out there anyway. If you are using Dynamic SQL to generate the select statement then you may want to read these articles.

    http://www.sommarskog.se/dynamic_sql.html#EXEC4

    http://www.sommarskog.se/grantperm.html#EXECASstatement

    With Dynamic SQL and using the EXEC() statement, the caller must have explicit SELECT rights on the table (view) being reference. We've gotten around this (at least for the moment) by adding "WITH EXEC AS OWNER" to the SP and granting execute rights to the SP specifically to a select group. We are then able to insulate the table from the users directly.

    Hope this helps.