Oracle Real Application Security
Version 12.1.0.2

General Information
Library Note Morgan's Library Page Header
Coming to OpenWorld 2018? Be sure to visit the TidalScale booth in Moscone South and learn how to solve performance problems and lower costs with Software Defined Servers. Before you visit the booth, or if you can't make it this year, check out TidalScale at www.tidalscale.com. Be sure to click on the Solutions link and look through the Oracle resources.
Purpose  
Dependencies
XS$ACE_TYPE    
DBMS_XS_PRINCIPALS    
DBMS_XS_SESSIONS    
DBMS_XS_SESSIONS_FFI    
     
RAS Functions
RAS Packages
DBMS_XS_SESSIONS XS_DATA_SECURITY XS_NAMESPACE
XS_ACL XS_DATA_SECURITY_UTIL XS_PRINCIPAL
XS_ADMIN_UTIL XS_DIAG XS_SECURITY_CLASS
 
RAS Functions
COLUMN_AUTH_INDICATOR
Checks whether the specified table column is authorized on a particular table row
COLUMN_AUTH_INDICATOR(col) RETURN BOOLEAN;
TBD
ORA_CHECK_ACL
Checks whether an application user has the queried application privileges according to a list of ACLs
ora_check_acl(XS_Operator IN HEX_NUMBER, arg2, arg3) RETURN BOOLEAN

ORA_CHECK_ACL(
acls IN RAW,
(privileges IN VARCHAR(128))+)
return NUMBER;
SELECT ora_check_acl(2147483661,  2147483653, NULL) FROM dual;
                     *
ERROR at line 1:
ORA-00932: inconsistent datatypes: expected BINARY got NUMBER
ORA_CHECK_PRIVILEGE
Checks whether the specified system privileges have been granted to an application user
ora_check_privilege(arg1, arg2);

ORA_CHECK_PRIVILEGE(
(privs IN VARCHAR(128))+)
return NUMBER;
SELECT ora_check_privilege('SCOTT', 'SYSDBA') FROM dual;

SELECT ora_check_privilege('SYSTEM', 'SELECT ANY TABLE') FROM dual;

SELECT ora_check_privilege('SELECT ANY TABLE', 'SYSTEM') FROM dual;
ORA_GET_ACLIDS
Returns a list of ACL identifiers associated with an object instance of the XDS-enabled tables for the current application user
ORA_GET_ACLIDS (
table_alias IN VARCHAR2,
(privileges IN VARCHAR(128))+)
RETURN RAW
This example on page 10-4 of the docs is nonsense
TO_ACLID
Appears able to converts an unknown value, possibly an ACL name to an ACL_ID but, as in the demo at right, I can prove the function exits but not get it working properly
to_aclid(<arg> IN VARCHAR2) RETURN VARCHAR2;
SQL> SELECT to_aclid(name)
  2  FROM xs$obj;
FROM xs$obj
     *
ERROR at line 2:
ORA-46114: ACL name XSAUTHENTICATED not found.

TO_ACLID(
(acls IN VARCHAR(128))+)
return NUMBER;
XS_SYS_CONTEXT (Introduced 11.1.0.6)
Retrieves the session attributes and the XS$GLOBAL_VAR namespace attribute for the current application session
xs_sys_context(
namespace IN VARCHAR2
attribute IN VARCHAR2)
RETURN VARCHAR2;
SELECT xs_sys_context('XS$SESSION', 'SESSION_XS_USER_GUID')
FROM dual;

SELECT xs_sys_context('XS$SESSION', 'SESSION_ID')
FROM dual;
 
Header
   
 
   
   
   
   

Related Topics
DBMS_METADATA
DBMS_XS_PRINCIPALS
DBMS_XS_SESSIONS
DBMS_XS_SESSIONS_FFI
DBMS_XS_SYSTEM
DBMS_XS_SYSTEM_FFI
DBMS_XS_SIDP
DBMS_XS_SYSTEM
DBMS_XS_SYSTEM_FFI
Packages
XS_ACL
XS_ACL_INT
XS_ADMIN_UTIL
XS_DATA_SECURITY
XS_DATA_SECURITY_UTIL
XS_DIAG
XS_DIAG_INT
XS_NAMESPACE
XS_PRINCIPAL
XS_SECURITY_CLASS
What's New In 12cR1
What's New In 12cR2

Morgan's Library Page Footer
This site is maintained by Dan Morgan. Last Updated: This site is protected by copyright and trademark laws under U.S. and International law. © 1998-2017 Daniel A. Morgan All Rights Reserved