tags:

views:

4618

answers:

2
Q: 

"GRANT ALL TO role" in SQL Server

Please can someone explain what the following statement does in SQL Server 2005:

GRANT ALL TO pax_writer

pax_writer is a database role previously created using the statement

CREATE ROLE pax_writer AUTHORIZATION dbo
A: 

GRANT ALL TO "someone" grants all permissions for all objects available in the database. But I'm not sure this is suppose to work in sql server 2005 as far as I'm concerned they left "GRANT ALL" only for backward compatibility.

According to the article in sql server 2005 works like this:

  1. If the securable is a database, "ALL" means BACKUP DATABASE, BACKUP LOG, CREATE DATABASE, CREATE DEFAULT, CREATE FUNCTION, CREATE PROCEDURE, CREATE RULE, CREATE TABLE, and CREATE VIEW.
  2. If the securable is a scalar function, "ALL" means EXECUTE and REFERENCES.
  3. If the securable is a table-valued function, "ALL" means DELETE, INSERT, REFERENCES, SELECT, and UPDATE.
  4. If the securable is a stored procedure, "ALL" means EXECUTE.
  5. If the securable is a table, "ALL" means DELETE, INSERT, REFERENCES, SELECT, and UPDATE.
  6. If the securable is a view, "ALL" means DELETE, INSERT, REFERENCES, SELECT, and UPDATE.

Hopefully someone will the right answer

MSDN - GRANT

Alan FL  2008-12-03 20:00:11
Are you sure? The MSDN documentation explicitly says, "It does not grant all possible permissions".
Phillip Wells  2008-12-03 21:08:11
in the article i has how it works.. but in earlier verionse of sql server might have being like i said. Unfortunately I'm not sure.
Alan FL  2008-12-03 22:53:43
i think it'd be a good idea not to use GRANT ALL, the reason the change it i think it was beacause in sql server 2005 the add additional permissions at various scopes that can be used to manage user permissions...
Alan FL  2008-12-03 23:05:17
+2  A: 

Grants database permissions

This is the only time you can leave the ON ThingsAndStuff clause out.

ALL

This option does not grant all possible permissions. Granting ALL is equivalent to granting the following permissions: BACKUP DATABASE, BACKUP LOG, CREATE DATABASE, CREATE DEFAULT, CREATE FUNCTION, CREATE PROCEDURE, CREATE RULE, CREATE TABLE, and CREATE VIEW.

gbn  2008-12-04 18:51:55

related questions

Sql to query a dbs scheme
Transform Columns into Rows
SQL Client for Mac OS X that works with MS SQL Server
How do you get leading wildcard full-text searches to work in SQL Server?
SQL Server 2000: Is there a way to tell when a record was last modified?
What's the BEST way to remove the time portion of a datetime value (SQL Server)
I need to know how much disk space a table is using in SQL Server
What's the best way to determine if a temporary table exists in SQL Server?
Appropriate pagefile size for SQL Server
Have you ever encountered a query that SQL Server could not execute because it referenced too many tables?
ASP.NET MVC "CRUD" Database Sample
How do I unit test persistence?
Best Book for a new Database Developer
Can I logically reorder columns in a table?
Best way to copy a database in SQL Server 2005/8?
Is Windows Server 2008 "Server Core" appropriate for a SQL Server instance?
Why doesn't SQL Full Text Indexing return results for words containing #?
Client collation and SQL Server 2005
Editing database records by multiple users
Deploying SQL Server Databases from Test to Live
SQL Server 2005 implementation of MySQL REPLACE INTO?
Upgrading SQL Server 6.5
How do I version my MS SQL database in SVN?
How to export data from SQL Server 2005 to MySQL
Check for changes to a SQL table?