Prerequisite:
There is client/server application written in Delphi32. The RDBMS is SQL Server 2005. A certain application functionality requires creation/dropping of triggers (from the application using ad hoc DDL statements) in the target database.
Problem:
If a user belongs to roles sysadmin there is no problem to create/drop triggers. However, this is considered to be a too permissive role for an application user.
Questions:
- What is the standard minimum (i.e. most restrictive) SQL Server role that could be used for creation/dropping of triggers?
- Would creation of a custom role, rather than using standard ones, constitute a more fine-grain approach to solving this problem?