tags:

views:

503

answers:

4
Q: 

Oracle 10g - An invisible column?

Hello,

Is it possible to 'hide' a column in an Oracle 10g database, or prevent data from being inserted altogether? We'd prefer to have existing INSERT statements still function, but have the information NOT insert for a particular column. Also, column masking or any type of encryption is not preferred.

Not sure if it's possible, but thanks in advance.

+2  A: 

With Oracle feature virtual private database (VPD) you can define which users can change and which users can select a column. Virtual private database is also called fine-grained access control (FGAC).

tuinstoel  2009-01-19 22:34:57
+3  A: 

If all you need to do is stop data from being inserted, you could create a BEFORE INSERT FOR EACH ROW trigger that wipes out any value inserted into the column before the row is saved.

There are various other things you can do with security (also views) to prevent inserts/selects from particular users in particular circumstances, but these will probably not let existing inserts continue to work.

Eric Rosenberger  2009-01-19 22:43:36
This is most likely the route we would like to take... Do you know if the original INSERT event would be logged, or just the trigger event?Thanks!
 2009-01-19 23:49:35
Depends what you mean by "logged"... As far as the transaction log goes, it should only be a single INSERT with the values as modified by the trigger (i.e., there wouldn't be two entries), but I suppose a lower-level audit log or something might record the original version somewhere...
Eric Rosenberger  2009-01-20 00:06:17
+1  A: 

Rename original table, create view with original table name but only selecting the columns you want to show.

Recompile code referring to existing table.

 2009-01-30 10:39:14
A: 

what about just setting your grants to each item you allow to update or insert

grant select on emp to scott;

grant update (column1, column2), insert (column1) on emp to scott

Mike A  2009-10-31 04:20:56

related questions

Is there a Way to use Linq to Oracle
NHibernate and Oracle connect through Windows Authenication
Boolean Field in Oracle
How do you manage schema upgrades to a production database?
How do I deal with quotes ' in SQL
When do you use table clusters?
Oracle write to file
MS SQL Server 2008 "linked server" to Oracle : schema not showing
Develop on local Oracle instance
Resources for an Oracle beginner
What strategies have you employed to improve web application performance?
Automate Syncing Oracle Tables With MySQL Tables
Best way to encapsulate complex Oracle PL/SQL cursor logic as a view?
What Content Management does your workplace use?
What is the difference between oracle's 'yy' and 'rr' date mask?
SQL/Query tools?
How to make Pro*C cope with #warning directives?
Oracle SQL Developer not responsive when trying to view tables (or suggest an Oracle Mac client)
How big would such a database be?
Oracle - What TNS Names file am I using?
What is a good way to open large files across a WAN?
How do I find the high water mark (for sessions) on Oracle 9i
SQL Case Statement Syntax?
cx_Oracle - what is the best way to iterate over a result set?
cx_Oracle - How do I access Oracle from Python?