'The INHERIT privilege in Oracle controls the ability to run invoker's rights code securely.'
'It helps prevent unauthorized access when executing PL/SQL units owned by another user.'
'You must explicitly grant INHERIT privileges to allow one user to run code with another’s context.'
'This privilege is especially important when dealing with definer's rights procedures.'
'Oracle introduced this feature to enhance security and reduce the risk of privilege escalation.'
New privilege that controls who can inherit invoker privileges, for more secure PL/SQL execution.
SQLcl: Release 24.4 Production on Thu May 29 00:09:26 2025
Copyright (c) 1982, 2025, Oracle. All rights reserved.
Last Successful login time: Thu May 29 2025 00:09:27 +05:30
Connected to:
Oracle Database 23ai Enterprise Edition Release 23.0.0.0.0 - for Oracle Cloud and Engineered Systems
Version 23.8.0.25.05
SQL> GRANT INHERIT PRIVILEGES ON USER hr TO app_user;
Grant succeeded.Use Case: Secure execution of procedures that use AUTHID CURRENT_USER.
No comments:
Post a Comment