Help - Global Call

Question

Help - Global Call

ganesh_trichy

Newbie

Points: 8
More actions
August 22, 2015 at 10:49 pm

#319980

Hi,
I am a .net guy, don't have deep knowledge on DB side. I am trying to implement solution for below requirement.
The application is passing a user id and department id(which the user have access to). We have at least 70 different applications using the user, department relation table to authorize the user to select/insert/update/delete the data.
I want to implement a global trigger/SP or some kind of mechanism to validate this on each request to the server even before the actual request(SP call from the application). Through this i can say my data is more secure even if application fail to validate the user. I can do this through Insert/Update/Delete trigger but i can't control the Select.
Note: i can't implement row level security logic, it will be a humongous change to lot of SP and most of the applications.
Any help/suggestion on this is appreciated.
Thanks,
Ganesh

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic. Login to reply

Jeff Moden SSC Guru Points: 1004686 More actions · Answer 1

ganesh_trichy (8/22/2015)
Hi,
I am a .net guy, don't have deep knowledge on DB side. I am trying to implement solution for below requirement.
The application is passing a user id and department id(which the user have access to). We have at least 70 different applications using the user, department relation table to authorize the user to select/insert/update/delete the data.
I want to implement a global trigger/SP or some kind of mechanism to validate this on each request to the server even before the actual request(SP call from the application). Through this i can say my data is more secure even if application fail to validate the user. I can do this through Insert/Update/Delete trigger but i can't control the Select.
Note: i can't implement row level security logic, it will be a humongous change to lot of SP and most of the applications.
Any help/suggestion on this is appreciated.
Thanks,
Ganesh

Unless your application passes credentials, the only login that SQL Server will see is the login of the application, which is of no help to you on this.

--Jeff Moden

RBAR is pronounced "ree-bar" and is a "Modenism" for Row-By-Agonizing-Row.
First step towards the paradigm shift of writing Set Based code:
________Stop thinking about what you want to do to a ROW... think, instead, of what you want to do to a COLUMN.

Change is inevitable... Change for the better is not.

Helpful Links:
How to post code problems
How to Post Performance Problems
Create a Tally Function (fnTally)