ACE Director Alum Daniel Morgan, founder of Morgan's Library, is scheduling
complimentary technical Workshops on Database Security for the first 30
Oracle Database customers located anywhere in North America, EMEA, LATAM, or
APAC that send an email to
asra_us@oracle.com. Request a Workshop for
your organization today.
Purpose
Used to check the authorization for a user or to set an Oracle Database Vault secure application role.
The DVSYS.DBMS_MACSEC_ROLES package is available to all users which is a gross violation of good security practices.
The Library recommends revoking the GRANT to PUBLIC and only granting execute on this package to a very limited number of authorized and audited users.
Checks whether the user invoking the method is authorized to use the specified DV Secure Application Role. The authorization is determined by checking the Rule Set associated with the role.
dbms_macsec_roles.can_set_role(p_role IN VARCHAR2)
RETURN BOOLEAN ;
BEGIN
IF dbms_macsec_roles.can_set_role('UW_APP_MGR') THEN
dbms_macsec_roles.set_role('UW_APP_MGR');
ELSE
RAISE_APPLICATION_ERROR(-20001, 'UW_APP_MGR Role Cannot Be Set');
END IF;
END;
/