Oracle Real Application Security
Version 12.1.0.2

General Information
Library Note Morgan's Library Page Header
The Library is currently in the process of being upgraded from Oracle Database Version to 12.2.0.1 and version 18.0 is going to be available soon. Demos are being upgraded to reflect the new Container paradigm as well as EBR (Edition Based Redefinition) and may contain references to CDBs, PDBs, and other objects you may not be familiar with such as CDB_OBJECTS_AE: Welcome to 12c and beyond.

Have you viewed the Library's main Table of Contents? If not ... [Click Here] ... scroll down the page and you will find links to the largest collection of Oracle Database demos on the net.
Purpose  
Dependencies
XS$ACE_TYPE    
DBMS_XS_PRINCIPALS    
DBMS_XS_SESSIONS    
DBMS_XS_SESSIONS_FFI    
     
RAS Functions
RAS Packages
DBMS_XS_SESSIONS XS_DATA_SECURITY XS_NAMESPACE
XS_ACL XS_DATA_SECURITY_UTIL XS_PRINCIPAL
XS_ADMIN_UTIL XS_DIAG XS_SECURITY_CLASS
 
RAS Functions
COLUMN_AUTH_INDICATOR
Checks whether the specified table column is authorized on a particular table row
COLUMN_AUTH_INDICATOR(col) RETURN BOOLEAN;
 
ORA_CHECK_ACL
Checks whether an application user has the queried application privileges according to a list of ACLs
ora_check_acl(XS_Operator IN HEX_NUMBER, arg2, arg3) RETURN BOOLEAN

ORA_CHECK_ACL(
acls IN RAW,
(privileges IN VARCHAR(128))+)
return NUMBER;
SELECT ora_check_acl(2147483661,  2147483653, NULL) FROM dual;
                     *
ERROR at line 1:
ORA-00932: inconsistent datatypes: expected BINARY got NUMBER
ORA_CHECK_PRIVILEGE
Checks whether the specified system privileges have been granted to an application user
ora_check_privilege(arg1, arg2);

ORA_CHECK_PRIVILEGE(
(privs IN VARCHAR(128))+)
return NUMBER;
SELECT ora_check_privilege('SCOTT', 'SYSDBA') FROM dual;

SELECT ora_check_privilege('SYSTEM', 'SELECT ANY TABLE') FROM dual;

SELECT ora_check_privilege('SELECT ANY TABLE', 'SYSTEM') FROM dual;
ORA_GET_ACLIDS
Returns a list of ACL identifiers associated with an object instance of the XDS-enabled tables for the current application user
ORA_GET_ACLIDS (
table_alias IN VARCHAR2,
(privileges IN VARCHAR(128))+)
RETURN RAW
This example on page 10-4 of the docs is nonsense
TO_ACLID
Appears able to converts an unknown value, possibly an ACL name to an ACL_ID but, as in the demo at right, I can prove the function exits but not get it working properly
to_aclid(<arg> IN VARCHAR2) RETURN VARCHAR2;
SQL> SELECT to_aclid(name)
  2  FROM xs$obj;
FROM xs$obj
     *
ERROR at line 2:
ORA-46114: ACL name XSAUTHENTICATED not found.

TO_ACLID(
(acls IN VARCHAR(128))+)
return NUMBER;
XS_SYS_CONTEXT (Introduced 11.1.0.6)
Retrieves the session attributes and the XS$GLOBAL_VAR namespace attribute for the current application session
xs_sys_context(
namespace IN VARCHAR2
attribute IN VARCHAR2)
RETURN VARCHAR2;
SELECT xs_sys_context('XS$SESSION', 'SESSION_XS_USER_GUID')
FROM dual;

SELECT xs_sys_context('XS$SESSION', 'SESSION_ID')
FROM dual;
 
Header
   
 
   
   
   
   

Related Topics
DBMS_METADATA
DBMS_XS_PRINCIPALS
DBMS_XS_SESSIONS
DBMS_XS_SESSIONS_FFI
DBMS_XS_SYSTEM
DBMS_XS_SYSTEM_FFI
DBMS_XS_SIDP
DBMS_XS_SYSTEM
DBMS_XS_SYSTEM_FFI
Packages
XS_ACL
XS_ACL_INT
XS_ADMIN_UTIL
XS_DATA_SECURITY
XS_DATA_SECURITY_UTIL
XS_DIAG
XS_DIAG_INT
XS_NAMESPACE
XS_PRINCIPAL
XS_SECURITY_CLASS
What's New In 12cR1
What's New In 12cR2

Morgan's Library Page Footer
This site is maintained by Dan Morgan. Last Updated: This site is protected by copyright and trademark laws under U.S. and International law. © 1998-2017 Daniel A. Morgan All Rights Reserved