Applying and Enforcing Database Object Permissions (Oracle Only)
Liquibase Business provides an Oracle only feature that gives DBAs the ability to specify object-level permission schemes. These schemes are automatically applied and enforced on every deployment. This ensures that object permissions are consistent and correct across all databases.
Define permission schemes:
Specify permission schemes for one or more roles or schemas
Specify a permission scheme based on types of objects or specific objects – for instance, "All new tables created should have READ/WRITE access for the application user"
Specify exceptions to an object's permission schemes for edge cases where an individual table, view or other object should be handled differently
Deploy permission schemes:
Validate and update database object permissions every time you deploy to a database
Revoke permissions that were applied outside of the standard deployment process if they conflict with your defined permission schemes, eliminating the threat of unauthorized access
Report on all permission changes including any out-of-process permission changes that violate the defined permission schemes
Copyright © Liquibase 2012-2022 - Proprietary and Confidential