Posted on 2008-10-17
I have a powerbuilder application that connects to oracle 9i db using one db account/schma. All users have one account in an application table and user enters the userid/password into pb screen which connects to DB using one master account to validate the userid/password.
A new security requirement forbids storing userids/passwords in client software and mandates audit trails. WE are thinking of creating one database account per user and have each user connect to his own schema which will be assigned privileges/role to the application schema.
If i create one db account per user is it possible to let user log in his username/password and then pass that to the DB for access. how is it implemented?
2. The new rules require us to enforce several password rules like
- minimum 8 characters
- no repeating characters
- one underscore, one upper case, on lowercase character
- change password every 30 days.
Can i create an oracle function to enforce those rules so when user enters the info, i check if he needs to change the password and prompt him with some screen to change it or retunr in valid message? or do we need some coding in PB.