The DBMS_XDBZ package controls the Oracle XML DB repository security, which is based on Access Control Lists (ACLs).
This chapter contains the following topics:
Security Model
Constants
Summary of DBMS_XDBZ Subprograms
See Also:
Oracle XML DB Developer's GuideThis section contains topics which relate to using the DBMS_XDBZ
package.
Owned by XDB
, the DBMS_XDBZ
package must be created by SYS
or XDB
. The EXECUTE
privilege is granted to PUBLIC
. Subprograms in this package are executed using the privileges of the current user.
The DBMS_XDBZ
package uses the constants shown in following tables.
Table 169-1 DBMS_XDBZ Constants - Name Format
Constant | Type | Value | Description |
---|---|---|---|
NAME_FORMAT_SHORT |
|
|
DB user name or LDAP nickname |
NAME_FORMAT_DISTINGUISHED |
|
|
LDAP distinguished name |
Table 169-2 DBMS_XDBZ Constants - Enable Option
Constant | Type | Value | Description |
---|---|---|---|
ENABLE_CONTENTS |
|
|
Enables hierarchy for contents and is used by users when calling the ENABLE_HIERARCHY Procedure |
|
|
|
Enables hierarchy for resource metadata, that is, this table will store schema based custom metadata for resources |
Table 169-3 DBMS_XDBZ Constants - Enable Option Exercised
Constant | Type | Value | Description |
---|---|---|---|
|
|
|
If hierarchy was enabled for contents, that is, the ENABLE_HIERARCHY Procedurewas called with |
|
|
|
If hierarchy was enabled for resource metadata, that is, the ENABLE_HIERARCHY Procedure was called with |
Table 169-4 DBMS_XDBZ Package Subprograms
Method | Description |
---|---|
Disables repository support for the specified |
|
Enables repository support for the specified |
|
Retrieves the ACL Object ID for the specified resource |
|
Retrieves the user ID for the specified user |
|
Determines if repository support for the specified |
|
Purges the LDAP nickname cache |
This procedure disables repository support for a particular XMLType
table or view.
This procedure enables repository support for a particular XMLType
table or view. This allows the use of a uniform ACL-based security model across all documents in the repository.
See Also:
Oracle XML DB Developer's Guide for more information aboutDBMS_XDBZ.ENABLE_HIERARCHY( object_schema IN VARCHAR2, object_name IN VARCHAR2, hierarchy_type IN PLS_INTEGER := DBMS_XDBZ.ENABLE_CONTENTS);
Table 169-6 ENABLE_HIERARCHY Procedure Parameters
Parameter | Description |
---|---|
|
The schema name of the |
|
The name of the |
|
How to enable the hierarchy.
If this subprogram is called on a table, another call will have no effect. Note that you cannot enable hierarchy for both contents and resource metadata. |
This function retrieves the ACL Object ID for the specified resource, if the repository path is known.
This function retrieves the user ID for the specified user name. The local database is searched first, and if found, the USERID
is returned in 4-byte database format. Otherwise, the LDAP directory is searched, if available, and if found, the USERID
is returned in 4-byte database format.
DBMS_XDBZ.GET_USERID( username IN VARCHAR2, userid OUT RAW, format IN BINARY_INTEGER := NAME_FORMAT_SHORT) RETURN BOOLEAN;
Table 169-8 GET_USERID Function Parameters
Parameter | Description |
---|---|
|
Name of the database or LDAP user. |
|
Return parameter for the matching user id. |
|
Format of the specified user name; valid options are:
|
This function determines if repository support for the specified XMLType
table or view is enabled.
DBMS_XDBZ.IS_HIERARCHY_ENABLED( object_schema IN VARCHAR2, object_name IN VARCHAR2, hierarchy_type IN PLS_INTEGER := IS_ENABLED_CONTENTS) RETURN BOOLEAN;
Table 169-9 IS_HIERARCHY_ENABLED Function Parameters
Parameter | Description |
---|---|
|
The schema name of the |
|
The name of the |
|
The type of hierarchy to check for.
|