devxlogo

Roles Are Disabled at Package Compilation Time

Roles Are Disabled at Package Compilation Time

Why Trust Us

When granting permissions through roles, it is important to know that rolesare disabled while packages are compiled. For example, consider two schemas: User_A and User_B. Let’s create Role_A:

 CREATE ROLE Role_A NOT IDENTIFIED;

Grant access on all the tables of User_A to Role_A. And then grant the role toUser_B:

 GRANT Role_A to User_B

Next, let’s create Sample_Package in User_B:

 CREATE OR REPLACE PACKAGE BODY 
SAMPLE_PKGASPROCEDURE TestProc ( iMemId IN   
MemberTable.MEMBERID%TYPE,                     OName   
OUT MemberTable.FIRSTNAME%TYPE )ASBEGIN   SELECT FirstName   INTO   oName   FROM   User_A.MemebrTable   WHERE  MemId = iMemId;EXCEPTION WHEN OTHERS THEN     ROLLBACK;	RAISE_APPLICATION_ERROR(-20001, 
'Sample_PKG.TestProc :'                                      
||sqlcode||' '||sqlerrm);END TestProc;End SAMPLE_PKG;

This would give a compilation error because Role_A is disabled at compile time. You would have to grant explicit SELECT on this table to User_B from User_A.

 GRANT SELECT On MemberTable TO User_B
devxblackblue

About Our Editorial Process

At DevX, we’re dedicated to tech entrepreneurship. Our team closely follows industry shifts, new products, AI breakthroughs, technology trends, and funding announcements. Articles undergo thorough editing to ensure accuracy and clarity, reflecting DevX’s style and supporting entrepreneurs in the tech sphere.

See our full editorial policy.

About Our Journalist

Charlie Frank

Charlie has over a decade of experience in website administration and technology management. As the site admin, he oversees all technical aspects of running a high-traffic online platform, ensuring optimal performance, security, and user experience.
View Author
Show More