Hi,
I have a general question about sql-server (2005) permission granting. Is it part of the security model to create a stored procedure as a user with higher permissions and grant Execute permission on that sp to a user with lower permissions--ie, those without access to the objects referenced in that procedure--and have it run without "access denied" errors.
For example, if UserA has permission to select and update TableA, I want to write a procedure that updates a single field in TableA and returns selected records from that table. Now I want a few other users who have no rights on that table--say UserB and UserC--to be able to run that procedure, but I don't want to get into the morass of assigning column-level permissions to the other users.
Is it possible to do this? I'm essentially asking for something akin to the "run as" in Windows, or the "With Owner Permissions" capability in Microsoft Access.
--Jim
I have a general question about sql-server (2005) permission granting. Is it part of the security model to create a stored procedure as a user with higher permissions and grant Execute permission on that sp to a user with lower permissions--ie, those without access to the objects referenced in that procedure--and have it run without "access denied" errors.
For example, if UserA has permission to select and update TableA, I want to write a procedure that updates a single field in TableA and returns selected records from that table. Now I want a few other users who have no rights on that table--say UserB and UserC--to be able to run that procedure, but I don't want to get into the morass of assigning column-level permissions to the other users.
Is it possible to do this? I'm essentially asking for something akin to the "run as" in Windows, or the "With Owner Permissions" capability in Microsoft Access.
--Jim