GRANT

4D - Documentation   Français   English   German   Japanese   4D SQL Reference, Table of Contents   4D SQL Reference, Index   Back   Previous   Next

version 11.3

GRANT[READ | READ_WRITE | ALL] ON sql_name TO sql_name

Description

The GRANT command can be used to set the access rights associated with the sql_name schema. These rights will be assigned to the group of 4D users designated by the second sql_name parameter.

The READ, READ_WRITE and ALL keywords can be used to set the access rights allowed for the table:

READ establishes Read-only access (data)

READ_WRITE establishes Read/Write access (data)

ALL establishes full access mode (data and structure).

Access control only applies to external connections. The SQL code executed within 4D via the Begin SQL/End SQL tags or commands such as SQL EXECUTE still have full access.

Compatibility Note: During the conversion of an older database to version 11.3 or higher, the global access rights (as set on the SQL page of the application Preferences) are transferred to the default schema.

The first sql_name parameter must contain the name of a group of 4D users to which you want to assign access rights to the schema. This group must exist in the 4D database.

Note: 4D allows group names to include spaces and/or accented characters that are not accepted by standard SQL. In this case, you must put the name between the [ and ] characters. For example: GRANT READ ON [my schema] TO [the admins!]

Only the database Designer and Administrator can modify schemas.

Note regarding referential integrity

4D ensures the principle of referential integrity independently from access rights. For example, suppose that you have two tables, Table1 and Table2, connected by a Many-to-One type relation (Table2 -> Table1). Table1 belongs to schema S1 and Table2 to schema S2. A user that has access rights to schema S1 but not to S2 can delete records in Table1. In this case, in order to respect the principles of referential integrity, all the records of Table2 that are related to records deleted from Table1 will also be deleted.

Example

You want to allow read/write access to data of the MySchema1 schema to the "Power_Users" group: 

   GRANT READ_WRITE ON MySchema1 TO POWER_USERS

See Also

ALTER SCHEMA, CREATE SCHEMA, REVOKE.

4D - Documentation   Français   English   German   Japanese   4D SQL Reference, Table of Contents   4D SQL Reference, Index   Back   Previous   Next