Oracle® Database PL/SQL Packages and Types Reference 11g Release 2 (11.2) Part Number E25788-04 |
|
|
PDF · Mobi · ePub |
The DBMS_XDBZ package controls the Oracle XML DB repository security, which is based on Access Control Lists (ACLs).
This chapter contains the following topics:
Security Model
Constants
Summary of DBMS_XDBZ Subprograms
See Also:
Oracle XML DB Developer's GuideThis section contains topics which relate to using the DBMS_XDBZ
package.
Owned by XDB
, the DBMS_XDBZ
package must be created by SYS
or XDB
. The EXECUTE
privilege is granted to PUBLIC
. Subprograms in this package are executed using the privileges of the current user.
The DBMS_XDBZ
package uses the constants shown in following tables.
Table 168-1 DBMS_XDBZ Constants - Name Format
Constant | Type | Value | Description |
---|---|---|---|
NAME_FORMAT_SHORT |
|
|
DB user name or LDAP nickname |
NAME_FORMAT_DISTINGUISHED |
|
|
LDAP distinguished name |
Table 168-2 DBMS_XDBZ Constants - Enable Option
Constant | Type | Value | Description |
---|---|---|---|
ENABLE_CONTENTS |
|
|
Enables hierarchy for contents and is used by users when calling the ENABLE_HIERARCHY Procedure |
|
|
|
Enables hierarchy for resource metadata, that is, this table will store schema based custom metadata for resources |
Table 168-3 DBMS_XDBZ Constants - Enable Option Exercised
Constant | Type | Value | Description |
---|---|---|---|
|
|
|
If hierarchy was enabled for contents, that is, the ENABLE_HIERARCHY Procedurewas called with |
|
|
|
If hierarchy was enabled for resource metadata, that is, the ENABLE_HIERARCHY Procedure was called with |
Table 168-4 DBMS_XDBZ Package Subprograms
Method | Description |
---|---|
Disables repository support for the specified |
|
Enables repository support for the specified |
|
Retrieves the ACL Object ID for the specified resource |
|
Retrieves the user ID for the specified user |
|
Determines if repository support for the specified |
|
Purges the LDAP nickname cache |
This procedure disables repository support for a particular XMLType
table or view.
DBMS_XDBZ.DISABLE_HIERARCHY( object_schema IN VARCHAR2, object_name IN VARCHAR2);
Table 168-5 DISABLE_HIERARCHY Procedure Parameters
Parameter | Description |
---|---|
|
The schema name of the |
|
The name of the |
This procedure enables repository support for a particular XMLType
table or view. This allows the use of a uniform ACL-based security model across all documents in the repository.
See Also:
Oracle XML DB Developer's Guide for more information aboutDBMS_XDBZ.ENABLE_HIERARCHY( object_schema IN VARCHAR2, object_name IN VARCHAR2, hierarchy_type IN PLS_INTEGER := DBMS_XDBZ.ENABLE_CONTENTS);
Table 168-6 ENABLE_HIERARCHY Procedure Parameters
Parameter | Description |
---|---|
|
The schema name of the |
|
The name of the |
|
How to enable the hierarchy.
If this subprogram is called on a table, another call will have no effect. Note that you cannot enable hierarchy for both contents and resource metadata. |
This function retrieves the ACL Object ID for the specified resource, if the repository path is known.
DBMS_XDBZ.GET_ACLOID( aclpath IN VARCHAR2, acloid OUT RAW) RETURN BOOLEAN;
Table 168-7 GET_ACLOID Function Parameters
Parameter | Description |
---|---|
|
ACL resource path for the repository |
|
The returned Object ID |
Returns TRUE
if successful.
This function retrieves the user ID for the specified user name. The local database is searched first, and if found, the USERID
is returned in 4-byte database format. Otherwise, the LDAP directory is searched, if available, and if found, the USERID
is returned in 4-byte database format.
DBMS_XDBZ.GET_USERID( username IN VARCHAR2, userid OUT RAW, format IN BINARY_INTEGER := NAME_FORMAT_SHORT) RETURN BOOLEAN;
Table 168-8 GET_USERID Function Parameters
Parameter | Description |
---|---|
|
Name of the database or LDAP user. |
|
Return parameter for the matching user id. |
|
Format of the specified user name; valid options are:
|
Returns TRUE
if successful.
This function determines if repository support for the specified XMLType
table or view is enabled.
DBMS_XDBZ.IS_HIERARCHY_ENABLED( object_schema IN VARCHAR2, object_name IN VARCHAR2, hierarchy_type IN PLS_INTEGER := IS_ENABLED_CONTENTS) RETURN BOOLEAN;
Table 168-9 IS_HIERARCHY_ENABLED Function Parameters
Parameter | Description |
---|---|
|
The schema name of the |
|
The name of the |
|
The type of hierarchy to check for.
|
Returns TRUE
if the given XMLTYPE table or view has the XDB Hierarchy enabled with the specified type.
This function purges the LDAP nickname cache. Returns TRUE
if successful.
DBMS_XDBZ.PURGELDAPCACHE RETURN BOOLEAN;