PANTHEON™ Help

 Toc
 PANTHEON Help - Welcome
[Collapse]PANTHEON
 [Collapse]Guides for PANTHEON
  [Expand]Guide for PANTHEON
  [Expand]Guide for PANTHEON Retail
  [Expand]Guide for PANTHEON Vet
  [Expand]Guide for PANTHEON Farming
 [Collapse]User Manuals for PANTHEON
  [Expand]User Manual for PANTHEON
  [Expand]User Manual for PANTHEON Retail
  [Expand]User manual for PANTHEON Vet
  [Expand]User Manual for PANTHEON Farming
[Collapse]PANTHEON Web
 [Collapse]Guides for PANTHEON Web
  [Expand]Guide for PANTHEON Web Light
  [Expand]Guide for PANTHEON Web Terminal
  [Expand]Guide for PANTHEON Web Legal
  [Expand]Old products Archive
 [Collapse]User Manuals for PANTHEON Web
  [Expand]Getting started PANTHEON Web
  [Expand]User Manual for PANTHEON Web Light
  [Expand]User Manual for PANTHEON Web Terminal
  [Expand]User Manual for PANTHEON Web Legal
  [Expand]Old products Archive
[Collapse]PANTHEON Granules
 [Collapse]Guides for PANTHEON Granules
  [Expand]Personnel Granule
  [Expand]Travel Orders Granule
  [Expand]Documents and Tasks Granule
  [Expand]Dashboard Granule
  [Expand]B2B Orders Granule
  [Expand]Field Service Granule
  [Expand]Fixed Assets Inventory Granule
  [Expand]Warehouse Inventory Granule
 [Collapse]User Manuals for PANTHEON Granules
  [Expand]Getting started
  [Expand]Personnel Granule
  [Expand]Travel Orders Granule
  [Expand]Documents and Tasks Granule
  [Expand]B2B Orders Granule
  [Expand]Dashboard Granule
  [Expand]Field Service Granule
  [Expand]Fixed Assets Inventory Granule
  [Expand]Warehouse Inventory Granule
  [Expand]Archive
[Expand]User Site

Load Time: 453.1338 ms
"
   6613 | 1 | |
Label


Troubleshooting

             

 

Users with admin rights can modify RLS security on PANTHEON database.

  1. Create Flat Tables, RLS functions and security policies
  2. Drop RLS on database (clear all)
  3. Sample to select all data without checking permissions
  4. Check if RLS is enabled on a PANTHEON database

1. Create Flat Tables, RLS functions and security policies


[dbo].[pPA_RLSCreate]

  1. Create RLS flat tables from script in RLS scheme
    SQL Command:
    Exec [dbo].[pPA_RLSFlatTablesPrepare]
  2. Fill all flat tables (data from t%usersecurity tables to RLS tables)
    SQL Command:
    Exec [dbo].[pPA_RLSFlatTablesFill]
  3. Create all RLS inline table valued functions used in predicates
    SQL Command:
    Exec [dbo].[pPA_RLSCreateFunctions]
  4. Fill data needed to create Security Policies for tables
    SQL Command:
    Exec [dbo].[pPA_SetRLSFunctionPolicyFill]
  5. Create after-insert triggers for changes on t%usersecurity tables
    SQL Command:
    Exec [dbo].[pPA_RLSCreateTriggers]
  6. Enable/disable all policies to apply RLS to database:

SQL Command:
Exec pPA_RLSSecurityPoliciesState 'ON';Exec pPA_RLSSecurityPoliciesState 'OFF';Exec pPA_RLSSecurityPoliciesState 'ON', 'tHE_Move';Exec pPA_RLSSecurityPoliciesState 'OFF', 'tHE_Move';

 

2. Drop RLS on database (clear all)

 

SQL Command: Exec [dbo].[pPA_RLSDrop]

  1. DROP SECURITY POLICY
  2. DROP Function [RLS]
  3. DROP Triggers: exec pPA_RLSCreateTriggers 'F'
  4. DROP table [RLS]
  5. Disable all policies to apply LS to database: Exec pPA_RLSSecurityPoliciesState 'OFF';

 

3. Sample to select all data without checking permissions

 

SQL Command: execute as user = 'RLS_ALL'select * from tHE_Moverevert

 

4. Check if RLS is enabled on a PANTHEON database

 

SQL Command: select * from [dbo].[fPA_RLSEnabled]()

  

     


Rate this topic
Was this topic usefull?
Comments
Comment will also bo visible in forum!