Solved

SQL 2005 Read Only Database Object Permissions

Posted on 2010-09-08
7
328 Views
Last Modified: 2012-05-10
I am looking for a way to allow my developers to be able to read table, stored procedure, view and function permissions without them being able to change them.  

I am thinking that I need to give them access to some of the system views, but I do not know which ones are needed for this.  db_securityadmin allows them to change permissions which they should not be able to do.
0
Comment
Question by:AaronRosema
  • 4
  • 2
7 Comments
 
LVL 17

Expert Comment

by:Chris Mangus
ID: 33631947
I don't know the exact system tables you need off the top of my head, but, I would create a custom view into the appropriate system table and grant your developers SELECT permission on the view you create.
0
 
LVL 4

Expert Comment

by:MichaelMH
ID: 33635444
0
 

Author Comment

by:AaronRosema
ID: 33730955
There is no way to do this without also being able to grant permissions.
0
Zoho SalesIQ

Hassle-free live chat software re-imagined for business growth. 2 users, always free.

 
LVL 17

Expert Comment

by:Chris Mangus
ID: 33733956
Disagree with poster.  It can be done and *is* done in many organizations.
0
 

Author Comment

by:AaronRosema
ID: 33734636
Then do you know how to do it?  If not, I will just delete the question since I am not getting a solution.
0
 
LVL 17

Expert Comment

by:Chris Mangus
ID: 33735329
I gave you enough info to be able to figure it out.  If you're unable to figure it out then I will create a view and send you the code.  You will need to be able to give SELECT permission to your developer group to the view.
0
 
LVL 17

Accepted Solution

by:
Chris Mangus earned 500 total points
ID: 33735626
Here's the code for a view.  Give your developers SELECT permission to the view you create.
SELECT su.name, OBJECT_NAME(sp.ID) As Object

		, CASE 

			WHEN sps.Action = 26	THEN 'REFERENCE'

			WHEN sps.Action = 178	THEN 'CREATE FUNCTION'

			WHEN sps.Action = 193	THEN 'SELECT'	

			WHEN sps.Action = 195	THEN 'INSERT'

			WHEN sps.Action = 196	THEN 'DELETE'

			WHEN sps.Action = 197	THEN 'UPDATE'

			WHEN sps.Action = 198	THEN 'CREATE TABLE'

			WHEN sps.Action = 203	THEN 'CREATE DATABASE'

			WHEN sps.Action = 207	THEN 'CREATE VIEW'

			WHEN sps.Action = 222 	THEN 'CREATE PROCEDURE'

			WHEN sps.Action = 224	THEN 'EXECUTE'

			WHEN sps.Action = 228	THEN 'BACKUP DATABASE'

			WHEN sps.Action = 233	THEN 'CREATE DEFAULT'

			WHEN sps.Action = 235	THEN 'BACKUP LOG'

			WHEN sps.Action = 236	THEN 'CREATE RULE'

			ELSE 'UNKNOWN'

		  END As Permission

  FROM	 syspermissions sp

 INNER JOIN sysusers su

	ON sp.grantee = su.uid

 INNER JOIN sysprotects sps

	ON su.uid = sps.uid AND sp.id = sps.id

Order By su.name

Open in new window

0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Suggested Solutions

by Mark Wills Attending one of Rob Farley's seminars the other day, I heard the phrase "The Accidental DBA" and fell in love with it. It got me thinking about the plight of the newcomer to SQL Server...  So if you are the accidental DBA, or, simp…
So every once in a while at work I am asked to export data from one table and insert it into another on a different server.  I hate doing this.  There's so many different tables and data types.  Some column data needs quoted and some doesn't.  What …
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now