TechQA.

SQL Server 2008 EF 4 - limiting database records returned using permissions?

403 views Asked by At

In our database all tables are linked back to a single table. This table has a bit column to limit whether the record is displayed. Currently the records are filtered on the code side of the website.

Is there any way to set up permission so that userA would never see any record in the database where that common bit column was set to true?

We are using SQL Server 2008.

Alternatively we are also using entity framework 4.0 in .net 4 (in c#) if you have any ideas how it might be accomplished there?

Thanks for your feedback.

c# sql-server-2008 .net-4.0 entity-framework-4 database-permissions
Original Q&A
2

There are 2 answers

2
C. Ross On

According to this excellent TechNet article, row level security is indeed possible with SQL server, if you structure your database accordingly, using views or stored procedures to limit the result by the current user. To my knowledge SQL Server does not have built in functionality for row level locking.

1
marc_s On

You could define a view on top of your table, which only shows those rows where that "active" column is set to 1 (true).

You could then revoke the SELECT permission on the underlying table from that group of users, but in turn grant them SELECT on that new view you've created.

Related Questions in C#

Related Questions in SQL-SERVER-2008

Related Questions in .NET-4.0

Related Questions in ENTITY-FRAMEWORK-4

Related Questions in DATABASE-PERMISSIONS

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions