Explicit usernames in references to objects

access-controloracle

Much of our code — both in external programs and in stored procedures — uses explicit usernames, when referring to various DB-objects:

SELECT * FROM prod.object

prod.StoredProcedure(.....)

This causes obvious problem, when a copy of the database is loaded into a schema with a different name — the same object becomes qa.object now…

I proposed, we drop such explicit references completely, referring simply to the object and StoredProcedure instead.

However, this would cause problems when another account (such as prod_ro) logs in and tries to execute prod's stored procedures or browse prod's tables.

How do people handle such situations?

Best Answer

You can use

alter session set current_schema=qa;

Then, all references to objects that aren’t qualified with a schema will be treated as if you wrote qa.object. You will still need the necessary privileges to work with the relevant object.

Related Solutions

SELECT statement with an explicit list of columns and then an asterisk (*)

Only if you prefix the asterisk with the table name:

select dummy, dual.* from dual;

DUMMY DUMMY 
----- ----- 
X     X

Which limits it's use to tables not joined with the using syntax:

select dummy, d1.* from dual d1 join dual d2 using(dummy)

SQL Error: ORA-25154: column part of USING clause cannot have qualifier
25154. 00000 -  "column part of USING clause cannot have qualifier"
*Cause:    Columns that are used for a named-join (either a NATURAL join
           or a join with a USING clause) cannot have an explicit qualifier.
*Action:   Remove the qualifier.

select d2.dummy, d1.* from dual d1 join dual d2 on(d1.dummy=d2.dummy);

DUMMY DUMMY 
----- ----- 
X     X

Why use explicit cursors instead of regular loops

A cursor can be explicit or implicit, and either type can be used in a FOR loop. There are really two aspects to your question.

Why use an explicit cursor FOR loop over an implicit cursor FOR loop?
- Use an explicit cursor FOR loop when the query will be reused, otherwise an implicit cursor is preferred.
Why use a loop with a FETCH rather than a FOR loop that doesn’t have an explicit FETCH?
- Use a FETCH inside a loop when you need to bulk collect or when you need dynamic SQL.

Here is some useful information from the documentation.

Example of Implicit Cursor FOR LOOP

BEGIN
   FOR vItems IN (
      SELECT last_name
      FROM employees
      WHERE manager_id > 120
      ORDER BY last_name
   ) 
   LOOP
      DBMS_OUTPUT.PUT_LINE ('Name = ' || vItems.last_name);
   END LOOP;
END;
/

Example of Explicit Cursor FOR LOOP

DECLARE
   CURSOR c1 IS
      SELECT last_name
      FROM employees
      WHERE manager_id > 120
      ORDER BY last_name;
BEGIN
   FOR vItems IN c1 LOOP
      DBMS_OUTPUT.PUT_LINE ('Name = ' || vItems.last_name);
   END LOOP;
END;
/

Implicit Cursor

An implicit cursor is a session cursor that is constructed and managed by PL/SQL. PL/SQL opens an implicit cursor every time you run a SELECT or DML statement. You cannot control an implicit cursor, but you can get information from its attributes.

An implicit cursor closes after its associated statement runs; however, its attribute values remain available until another SELECT or DML statement runs.

The implicit cursor attributes are: SQL%ISOPEN, SQL%FOUND, SQL%NOTFOUND, SQL%ROWCOUNT, SQL%BULK_ROWCOUNT, SQL%BULK_EXCEPTIONS

Explicit Cursor

An explicit cursor is a session cursor that you construct and manage. You must declare and define an explicit cursor, giving it a name and associating it with a query (typically, the query returns multiple rows). Then you can process the query result set in either of these ways:

Open the explicit cursor (with the OPEN statement), fetch rows from the result set (with the FETCH statement), and close the explicit cursor (with the CLOSE statement).

Use the explicit cursor in a cursor FOR LOOP statement (see "Query Result Set Processing With Cursor FOR LOOP Statements").

You cannot assign a value to an explicit cursor, use it in an expression, or use it as a formal subprogram parameter or host variable. You can do those things with a cursor variable (see "Cursor Variables").

Unlike an implicit cursor, you can reference an explicit cursor or cursor variable by its name. Therefore, an explicit cursor or cursor variable is called a named cursor.

Cursor FOR LOOP Statements

The cursor FOR LOOP statement lets you run a SELECT statement and then immediately loop through the rows of the result set. This statement can use either an implicit or explicit cursor.

Best Answer

Related Solutions

SELECT statement with an explicit list of columns and then an asterisk (*)

Why use explicit cursors instead of regular loops

Related Question