Oracle 赋权和回收权限的生效时间
--session 1查看会话中的角色zhaoxu@ORCL>select * from session_roles;
ROLE
------------------------------------------------------------------------------------------
CONNECT
--session 2赋予zhaoxu用户dba角色
sys@ORCL>grant dba to zhaoxu;
Grant succeeded.
sys@ORCL>select * from dba_role_privs where grantee='ZHAOXU';
GRANTEE GRANTED_ROLE ADMIN_OPT DEFAULT_R
------------------------------ ------------------------------ --------- ---------
ZHAOXU DBA NOYES
ZHAOXU CONNECT NOYES
--session 1再次查看会话中的角色,没有dba角色,也没有查看v$session的权限
zhaoxu@ORCL>select * from session_roles;
ROLE
------------------------------------------------------------------------------------------
CONNECT
zhaoxu@ORCL>select count(*) from v$session;
select count(*) from v$session
*
ERROR at line 1:
ORA-00942: table or view does not exist
--session 1执行set role命令,可以看到DBA及相关的角色已经加载到session1中了,也可以查询v$session
zhaoxu@ORCL>set role dba;
Role set.
zhaoxu@ORCL>select * from session_roles;
ROLE
------------------------------------------------------------------------------------------
DBA
SELECT_CATALOG_ROLE
HS_ADMIN_SELECT_ROLE
......
19 rows selected.
zhaoxu@ORCL>select count(*) from v$session;
COUNT(*)
----------
29
--使用zhaoxu用户打开session 3,可以看到新会话中默认会加载DBA及相关角色
$ sqlplus zhaoxu/zhaoxu
SQL*Plus: Release 11.2.0.4.0 Production on Sat Jan 21 16:22:01 2017
Copyright (c) 1982, 2013, Oracle.All rights reserved.
Connected to:
Oracle Database 11g Enterprise Edition Release 11.2.0.4.0 - 64bit Production
With the Partitioning, OLAP, Data Mining and Real Application Testing options
zhaoxu@ORCL>select * from session_roles;
ROLE
------------------------------------------------------------------------------------------
CONNECT
DBA
SELECT_CATALOG_ROLE
......
20 rows selected.
页:
[1]