Create and grant roles
You must log into the database as Pat before proceeding with this page.
The data in table 'credit_card' is accessible to all employees of J.K.Avro superstore.
To protect sensitive information stored in table 'credit_card' and provide ease of data access management, SECADM Pat uses database roles.
Operation
To prevent access to sensitive data (like credit card number, CCV, card holder name) in the table 'credit_card' by any employee
in the company, SECADM Pat creates and grants roles to users as defined below.
- Create roles 'Mgr' and 'custService'.
- Grant role 'Mgr' to Joe, manager of customer service department.
- Grant role 'custService' to Bob, an employee of the customer service department.
- Grant SELECT, INSERT, UPDATE, and DELETE privileges to role 'Mgr' on table 'credit_card'.
- Grant SELECT, INSERT, and UPDATE privileges to role 'custService' on table 'credit_card'.
Solution
The query results on the right pane show that SECADM Pat creates roles and grants them to Joe and Bob.