Based on best practices, standard data- base roles. Repository roles can also be transported to other systems using delivery units. In this chapter, well define standard database roles, which are created using the CREATE ROLE SQL syntax. This means that the creation of the role is decoupled from the ownership as the runtime version of the role will be created in runtime by _SYS_REPO technical user. Repository roles, also known as design-time roles, are created within the SAP HANA Repository. Go to Security and open your database user. You can do so by appending /sap/hana/ide to the URL of the database system, or you can access it from the SAP BTP cockpit. Only the grantor can revoke the privilege Open the SAP HANA Web-based Development Workbench on the SAP HANA XS system. This system privileges also allows granting of any catalog role. To create a catalog role, the ROLE ADMIN system privilege is needed. Privileges revoke if grantor is droppedĬatalog roles can be created using SAP HANA Studio, SAP HANA Cockpit and on a SQL console. The SAP HANA Web-Based Development Workbench editor interface is very similar to the development areas within the Repositories tab of SAP HANA studio.The figure below shows the editor on the left side, you’ll see a Content folder with the package hierarchy below it.If your Studio is currently closed, please open it. Non-transportable( created directly in the DB catalog (no design time)) Creating a role Role creation is done, like all other SAP HANA development, in the Studio.Managing catalog roles has several challenges, especially with regard to transportation and revocation of privileges and roles. System privilege ROLE ADMIN required to create catalog roleĪ catalog role is also called runtime role.
0 kommentar(er)
