ACE Director Alum Daniel Morgan, founder of Morgan's Library, is scheduling
complimentary technical Workshops on Database Security for the first 30
Oracle Database customers located anywhere in North America, EMEA, LATAM, or
APAC that send an email to
asra_us@oracle.com. Request a Workshop for
your organization today.
xs_principal_int.create_dynamic_role(
name IN VARCHAR2,
duration IN BINARY_INTEGER,
scope IN BINARY_INTEGER,
description IN VARCHAR2,
acl IN VARCHAR2);
col description format a110
col duration format a8
col name format a20
col scope format a7
SELECT name, duration, system_defined, scope, description
FROM dba_xs_dynamic_roles
ORDER BY 1;
NAME DURATION SYS SCOPE DESCRIPTION
-------------------- ---------- --- ------- ---------------------------------------------
DBMS_AUTH YES SESSION A dynamic role granted to an application user
authenticated via direct login to the
database
DBMS_PASSWD YES SESSION A dynamic role granted to an application user
authenticated via direct login to the
database using password
DYNTEST 10 NO REQUEST Test Dyn Role
EXTERNAL_DBMS_AUTH YES SESSION A dynamic role enabled in directly logged in
external user session
MIDTIER_AUTH YES SESSION A dynamic role granted to an application user
authenticated via middle tier
XSAUTHENTICATED YES SESSION A dynamic role granted to every authenticated
application user
XSSWITCH YES SESSION An application dynamic role used to indicate
that a proxy user was switched to a client
user
xs_principal_int.create_role(
name IN VARCHAR2,
enabled IN BOOLEAN,
start_date IN TIMESTAMP WITH TIME ZONE,
end_date IN TIMESTAMP WITH TIME ZONE,
guid IN RAW,
external_source IN VARCHAR2,
description IN VARCHAR2);
set linesize 201
col description format a90
col end_date format a20
col external_source format a16
col start_date format a20
SELECT name, default_enabled, TRUNC(start_date), TRUNC(end_date)
FROM dba_xs_roles
ORDER BY 1;
NAME DEF TRUNC(START_DATE) TRUNC(END_DATE)
---------------- --- -------------------- --------------------
TEST YES 21-NOV-2021 00:00:00 28-NOV-2021 00:00:00
XSBYPASS NO
XSCACHEADMIN YES
XSCONNECT YES
XSDISPATCHER YES
XSNAMESPACEADMIN YES
XSPROVISIONER YES
XSPUBLIC YES
XSSESSIONADMIN YES
SELECT name, description
FROM dba_xs_roles
ORDER BY 1;
NAME DESCRIPTION
---------------- ---------------------------------------------------------------------
TEST Test Role
XSBYPASS An application role used to bypass the restrictions imposed by system
constraining ACL
XSCACHEADMIN An application role used for midtier cache administration
XSCONNECT An application role used to grant create session privilege to RAS
direct logon user
XSDISPATCHER An application role used for dispatcher
XSNAMESPACEADMIN An application role used for namespace attribute administration
XSPROVISIONER An application role used to grant provision and callback privileges
XSPUBLIC An application role enabled in every application user session
XSSESSIONADMIN An application role used for session administration
xs_principal_int.create_user(
name IN VARCHAR2,
schema IN VARCHAR2,
status IN BINARY_INTEGER,
start_date IN TIMESTAMP WITH TIME ZONE,
end_date IN TIMESTAMP WITH TIME ZONE,
guid IN RAW,
external_source IN VARCHAR2,
description IN VARCHAR2,
acl IN VARCHAR2);
xs_principal_int.set_effective_dates(
principal IN VARCHAR2,
start_date IN TIMESTAMP WITH TIME ZONE,
end_date IN TIMESTAMP WITH TIME ZONE,
prin_id IN NUMBER);
xs_principal_int.set_password_internal(
username IN VARCHAR2,
old_pwd IN VARCHAR2,
new_pwd IN VARCHAR2,
self_change IN BOOLEAN,
type IN BINARY_INTEGER,
verifier OUT VARCHAR2);
