-----Google Analytics Code Start----> <-----Google Analytics Code Close---->
Home |
Technical Articles |
Training Articles |
Receive Email for New Articles |
Contributors |
Apps Book |
Read Only Schema in Oracle APPS 11i | | Print | |
Written by Anil Passi | |
Saturday, 02 September 2006 | |
In this article I have discussed how to create and maintain a read only schema for APPS in Oracle eBusiness Suite.
Whilst in the past I have known clients to implement this using synonyms. However the approach discussed below is designed without the need of having to create a single synonym in APPS_QUERYschema. Comments
(21)
![]() ![]() written by Dnyanesh , February 07, 2007
If we give select any table to new user(who needs read only access),can't it be fine ?
'%_S' in the select statement above will not fetch any synonyms/views ending with 'S'.
The statement has to be like, SELECT * FROM all_objects WHERE owner = 'APPS' AND object_type IN ('SYNONYM', 'VIEW') AND object_name NOT LIKE '%_S' ESCAPE ''; This would aviod getting objects ending with '_S' (which I guess would be sequences, and they are not selected in the object_type above). - Pranay
Hi Anil/Dnyanesh,
I am looking for creating read only responsibility. Will you pls prepare note for this. Thanks, Srinivas
Hi Anil , Oracle says that Data Group attached to responsibility helps to connect to username which is defined in Data Group as Application Oracle ID pair. So e.g Application Name => Oracle GL Oracle ID => Apps. This means if user select GL responsibility it will connect with Apps User. So can we achieve Query Only Schema with this functionality like Creating New Data Group which will be paired to Apps_Query schema . Then creating a responsibility and attached this new data group. Just a thought.
hi
im new to orr-apps .can u elaborate me on.....Create custom Application.....it would be gr8 help for me.....thanx in advance... regards Ashish Hi Anil, Just adding one thought to the point no. 2, in case of non-hrms responsibility, there would be many form functions, is there a single way to make all the forms query-only access to all users in apps? please give a suggestion on this. Thanks, Neeladri
Hi Anil:
your doc is very useful!!! thanks in advance. But I would like to comment another issue regarding this matter, read_only apps schema... I working to implementing policies and procedures for SOX audit, and I need to define a specific procedure to established a emergency changes to live environment.. that is, create a mirror apps schema (apps-emer) for implement a emergency changes for a developer user if the person in charge to apply this cannot to do... do you have any experiences about this issue, mirror apps schema? thanks for your comments Regards, Carlos
Hi Anil:
I'm trying to apply your process, but when I would like to create trigger xx_apps_query_logon_trg, failed with oracle error ora-600 [17057]. This lookup error is not identified!! do you have any experience about this trouble? Thanks! Carlos
Appreciate for the details about the APPS_QUERY read-only setup options for creating schema. Is there an answer or somebody ever tried this -> Create an Oracle Apps read-only responsibility with new data groups (this is linked to APPS_QUERY schema); Or what all components - objects and privilegs required to login and access standard oracle forms thru the read-only responsility attached to read-only schema data group. I know about making a readonly resp connecting to APPS schema. Appreciate your feedback.
Has anybody tried creating Read only responsibility connecting to Read only APPS_QUERY schema? Please share your ideas.
Please be aware....
Apps Read only schema is a serious security violation. When implementing this make sure you are not violating any Audit procedures. Access from back-end should always be discouraged unless there is a dire need and it is always better to have individual users created in DB and have access to data which they are authorized to see.
Actually I started at oracle forums....went to some blog...then went to another...and then to Atul's blog and from there I came here...was a long journey....
![]()
Hi Anil,
Just adding one thought to the point no. 2, in case of non-hrms responsibility, there would be many form functions, is there a single way to make all the forms query-only access to all users in apps? please give a suggestion on this. Thanks, Khaleel S
Hi Anil
Can you please explain in detail about READ-ONLY APPS Schema. I am not able to find schema "XX_G4G" Thanks Venkat.
Granting SELECT on that table is more then security flaw. What about that?
THX You must be logged in to a comment. Please register if you do not have an account yet.
|
This is a excellent note on creating read only schema for Apps.
Well, I am looking for creating read only responsibility. Will you pls prepare note for this.
Thanks,
Dnyanesh