Check Granted privileges

Similar Messages

• How to check granted privileges on role.

  Hi,
  Can any one explain how to check granted privileges on role.
  I have created one role called ALL_SYSPRIVS
  but I forgot what privileges granted to this role
  Thank you...

  Hi Vijay,
  Last week i saw the following thread:
  Finding the privileges assigned to a user
  Re: Finding the privileges  assigned to a user
  From there, you'll be able to find a few scripts that will provide you with an overview of grants assigned to user, or role....
  HTH,
  Thierry

• Granting privilege through role not working for PL/SQL

  Version: 11.2.0.2
  In our shop, we don't grant privileges directly to a user, we grant it to a role and grant that role to the intended grantee.
  Granting privileges through a role seems to be fine with SQL Engine. But it doesn't work from PL/SQL engine.
  In the below example GLS_DEV user is granted SELECT access on SCOTT.pets table through a role called tstrole. GLS_DEV can select this table from SQL. But PL/SQL Engine doesn't seem to know this.
  Reproducing the issue:
  SQL> show user
  USER is "SCOTT"
  SQL> select * from pets;
  NAME
  PLUTO
  SQL> conn / as sysdba
  Connected.
  SQL> create user GLS_DEV identified by test1234 default tablespace TSTDATA;
  User created.
  SQL> alter user GLS_DEV quota 25m on TSTDATA;
  User altered.
  SQL> grant create session, resource to GLS_DEV;
  Grant succeeded.
  --- Granting SELECT privilege on scott.pets to tstrole and then grant this role to GLS_DEV.
  SQL> conn / as sysdba
  Connected.
  SQL>
  SQL> create role tstrole;
  Role created.
  SQL> grant select on scott.pets to tstrole;
  Grant succeeded.
  SQL> grant tstrole to GLS_DEV;
  Grant succeeded.
  SQL> conn GLS_DEV/test1234
  Connected.
  SQL>
  SQL> select * From scott.pets;
  NAME
  PLUTO
  ---- All fine till here. From SQL engine , GLS_DEV user can SELECT scott.pets table.
  --- Now , I am going to create a PL/SQL object in GLS_DEV which tries to refer scott.pets
  SQL> show user
  USER is "GLS_DEV"
  create or replace procedure my_proc
  is
  myvariable varchar2(35);
  begin
       select name into myvariable from scott.pets ;
       dbms_output.put_line(myvariable);
  end my_proc;
  Warning: Procedure created with compilation errors.
  SQL> show errors
  Errors for PROCEDURE MY_PROC:
  LINE/COL ERROR
  6/2      PL/SQL: SQL Statement ignored
  6/41     PL/SQL: ORA-01031: insufficient privileges
  SQL>
  SQL> 6
    6*    select name into myvariable from scott.pets ;
  --- PL/SQL Engine doesn't seem to know that GLS_DEV has select privilege on scott.pets indirectly granted through a role
  --- Fix
  --- Instead of granting privilege through a role, I am granting the SELECT privilege on scott.pets to GLS_DEV directly.
  --- The error goes away, I can compile and execute the procedure !!
  SQL> conn / as sysdba
  Connected.
  SQL>
  SQL> grant select on scott.pets to GLS_DEV;
  Grant succeeded.
  SQL> conn GLS_DEV/test1234
  Connected.
  SQL>
  SQL> create or replace procedure my_proc
  is
  myvariable varchar2(35);
  begin
          select name into myvariable from scott.pets ;
          dbms_output.put_line(myvariable);
  end my_proc;  2    3    4    5    6    7    8    9   10
  11  /
  Procedure created.
  SQL> set serveroutput on
  SQL> exec my_proc;
  PLUTO
  PL/SQL procedure successfully completed.Has anyone encountered the same issue ?

  You really should start your own new thread for this question instead of resurrecting an old one, but to answer your question.
  There are two things going on here. First, there are a number of aler session commands that can be used by any user regardless of what privileges they are granted. Although I do not have the entire list at hand, things like nls_date_format and current_schema are available to all users, sort of like the grants to public in the data dictionary.
  Second, when you use execute immediate, the PL/SQL engine never really sees the statement, as far as the compiler is concerned it is just a string. It is only when the string is passed to the sql engine that permissions are checked, and there roles are not enabled.
  SQL> create role t_role;
  Role created.
  SQL> grant select on ops$oracle.t to t_role;
  Grant succeeded.
  SQL> create user a identified by a default tablespace users;
  User created.
  SQL> grant create session, create procedure to a;
  Grant succeeded.
  SQL> grant t_role to a;
  Grant succeeded.
  SQL> connect a/a
  Connected.
  SQL> select * from ops$oracle.t;
          ID DESCR
           1 One
           1 Un
  SQL> create function f (p_descr in varchar2) return number as
    2     l_num number;
    3  begin
    4     select id into l_num
    5     from ops$oracle.t
    6     where descr = p_descr;
    7     return l_num;
    8  end;
    9  /
  Warning: Function created with compilation errors.
  SQL> show error
  Errors for FUNCTION F:
  LINE/COL ERROR
  4/4      PL/SQL: SQL Statement ignored
  5/20     PL/SQL: ORA-00942: table or view does not exist
  SQL> create or replace function f (p_descr in varchar2) return number as
    2     l_num number;
    3  begin
    4     execute immediate 'select id from ops$oracle.t where descr = :b1'
    5                       into l_num using p_descr;
    6     return l_num;
    7  end;
    8  /
  Function created.
  SQL> select f('One') from dual;
  select f('One') from dual
  ERROR at line 1:
  ORA-00942: table or view does not exist
  ORA-06512: at "A.F", line 4John

• How to check the privileges assigned to a role

  Hi All,
  Can you please let me know how to check the privileges assigned to a role in Oracle?
  When I query the dba_tab_privs it says no rows returned.
  Please help..
  Regards,
  Dan

  user9212851 wrote:
  Can you please let me know how to check the privileges assigned to a role in Oracle?
  When I query the dba_tab_privs it says no rows returned.
  When you've checked the manuals and identified the views suggested by other posters you will find that it's still not a trivial problem since a role may be granted to another role - which means you need to do some recursion to uncover all the privileges available to a role.
  Pete Finnigan - who specialises in Oracle security - published some appropriate scipts a few years ago; they are probably still relevant. Here's a starting link: http://www.petefinnigan.com/weblog/archives/00001243.htm
  Regards
  Jonathan Lewis

• Error while granting privileges to new user

  hi all,
  I created new user and i tried to grant privileges to that new user by using ( SQL> CONNECT / AS sysdba;
  Connected.
  SQL> CREATE USER cdcproj IDENTIFIED BY cdcproj
  2 QUOTA UNLIMITED ON SYSTEM
  3 QUOTA UNLIMITED ON SYSAUX;
  User created.
  SQL> GRANT CREATE SESSION TO cdcproj;
  Grant succeeded.
  SQL> GRANT CREATE TABLE TO cdcproj;
  Grant succeeded.
  SQL> GRANT SELECT_CATALOG_ROLE TO cdcproj;
  Grant succeeded.
  SQL> GRANT EXECUTE_CATALOG_ROLE TO cdcproj;
  Grant succeeded.
  SQL> EXECUTE DBMS_STREAMS_AUTH.GRANT_ADMIN_PRIVILEGE(grantee => 'cdcproj'); PL/SQL procedure successfully completed.
  SQL> GRANT ALL ON PL.PROJ_HISTORY TO cdcproj;
  Grant succeeded. ). All the commands worked except last command. It is giving error i.e (GRANT ALL ON PL.PROJ_HISTORY TO cdcproj; ) error is ( table / view not exists ).
  What i can do. Any help.
  Otherwise is there any other method to grant privileges.
  Thanks in advance.

  What is your Oracle version ?
  Are you sure the object PL.PROJ_HISTORY exists ?
  What is the output of (using the Oracle account that executes the GRANT):
  select * from session_roles;
  select * from session_privs;

• How to check which privileges user is using

  Hello All,
  I have a user assigned DBA role in mistake many years back.
  During our security overview I is flagged and now I need to revoke the DBA role from that user.At the moment it look like as follows and I am on 10204 database
  Privilege
  Category Granted Privilege
  Role Privs CONNECT
  DBA
  OEM_MONITOR
  RESOURCE
  Sys Privs ALTER ANY MATERIALIZED VIEW
  ANALYZE ANY
  CREATE ANY MATERIALIZED VIEW
  CREATE PROCEDURE
  CREATE ROLE
       CREATE SEQUENCE
  CREATE SESSION
  CREATE TABLE
  CREATE VIEW
  DROP ANY MATERIALIZED VIEW
  GLOBAL QUERY REWRITE
  UNLIMITED TABLESPACE
  Now I need to find what all privileges out of approx 158 in the DBA role this user is using so that I can revoke the DBA role and assign that sys privielege exclusively and later on trim down a bit on those as well if possible?
  Can someone help me in finding or is there a way possible to find out which privileges are actually being used by the user assigned to him via DBA role?
  I can find something on net on those lines, any help or useful pointers would be highly appreciated.
  Many Thanks,
  Rishi

  Hello All,
  Right I think auditing the DBA role could save my day.I have enable the auditing on the DB for dba role as shown below:
  audit_file_dest string /oraadmin/tgtx/10/adump
  audit_sys_operations boolean FALSE
  audit_syslog_level string
  audit_trail string DB, EXTENDED
  Exact version of the database is:
  Oracle Database 10g Enterprise Edition Release 10.2.0.4.0 - Prod
  PL/SQL Release 10.2.0.4.0 - Production
  CORE 10.2.0.4.0 Production
  TNS for Linux: Version 10.2.0.4.0 - Production
  NLSRTL Version 10.2.0.4.0 - Production
  I have enable the audit dba role for user exeter as shown:
  SYS@TGTX> AUDIT DBA by exeter WHENEVER SUCCESSFUL;
  Audit succeeded.
  Now I expect to audit all the sys privs assigned to dba role but alas its not working as expected if anyone can shed any light ON it, what I am trying to do is as follows:
  I am trying to use the sys priv that is create any table as user exeter who is assigned dba role as follows:
  SYS@TGTX> select * from dba_role_privs where grantee='EXETER';
  GRANTEE GRANTED_ROLE ADM DEF
  EXETER DBA NO YES
  EXETER CONNECT NO YES
  EXETER RESOURCE NO YES
  EXETER OEM_MONITOR NO YES
  EXETER@TGTX> create table dbaschema.test2 (srno number(10));
  Table created.
  Now I expect to see some records in dba_audit_trail as a result of above commands but there is none, am I doing anything wrong here?
  SELECT * FROM dba_audit_trail
  WHERE USERNAME = 'EXETER'
  ORDER BY timestamp;
  No rows returned but I shall have expected atleast one row to be returned here after enabling the audit on DBA role by exeter.
  Any Ideas?
  Thanks
  Rish

• How to grant privileges on all the tables in a schema

  Hi All,
  Can you tell me how to grant privileges on all the tables of a schema A
  to schema B.
  For Example:
  There are 200 tables in schema A, I wanted to grant select privilege on all the tables of a scheme A to schema B.
  Thanks in advance.

  note that USER is the user that will have the select priviledge
  the procedure includes views as well
  CREATE OR REPLACE PROCEDURE GRANT_ACCESS_ON_USER IS
  CURSOR c1 is select table_name from user_tables;
  CURSOR c2 is select view_name from user_views;
  tablename user_tables.TABLE_NAME%TYPE;
  viewname user_views.VIEW_NAME%TYPE;
  BEGIN
  tmpVar := 0;
  OPEN c1;
  loop
       fetch c1 into tablename;
       EXIT WHEN c1%NOTFOUND;
       EXECUTE IMMEDIATE 'GRANT SELECT on '||tablename ||' to USER';
  end loop ;
  close c1;
  OPEN c2;
  loop
       fetch c2 into viewname;
       EXIT WHEN c2%NOTFOUND;
       EXECUTE IMMEDIATE 'GRANT SELECT on '||viewname ||' to USER';
  end loop ;
  close c2;
  EXCEPTION
  WHEN NO_DATA_FOUND THEN
  NULL;
  WHEN OTHERS THEN
  -- Consider logging the error and then re-raise
  RAISE;
  END;
  /

• Grant Privilege to Role instead of Direct grant doesn't work

  Hi all
  My scenario is sas follow:
  create user a identified by a;
  create user b identified by b;
  grant connect,resource to a ;
  grant connect,resource to b ;
  conn a/a
  create table tbl( c1 number(10));
  conn system/sys
  create role roll;
  grant roll to b;
  conn a/a
  grant select on tbl to roll;
  conn b/b
  set role roll;
  create or replace procedure b.pr
  as
  v number(10);
  begin
  select a into v
  from a.tbl
  where a=0;
  end;
  show error
  Errors for PROCEDURE B.P:
  LINE/COL ERROR
  6/1 PL/SQL: SQL Statement ignored
  7/6 PL/SQL: ORA-00942: table or view does not exist
  This happen because i granted the SELECT privilege to user b through the role ROLL but if i granted the user b the SELECT privilege directly it work properly
  Why???
  And how could I grant the privilege from within a role, Because i don't want to grant it directly
  Thank in advance
  Bassil

  There is no other way. The owner of stored code must have been directly granted all necessary (used in code) select, insert, update, or delete privileges. The code owner cannot just have the referenced privileges granted to them via a role. There is no workaround, nor should there be as this is a security feature. Just because you have been granted insert or delete to another user's tables does not mean you should be able to grant that access to some other user. This is exactly what you do when you grant execute to stored code that referenced another user's objects.
  The referenced article is by Tom Kyte and there are few people who understand how to use Oracle to better effect than Tom. The same information can be found in the official documentation and is referenced by the article.
  You can write packages that use the privileges of the executing person. Perhaps for the specific problem you are writing the code to handle this is the route you want to take. See the manuals for the details.
  Note - If user A grants insert to user B on table_a then user B can write a procedure, proc_b, and grant execute to a role and anyone with the role can perform inserts into table_a via proc_b, without having any grants on table_a. You do not need to grant privileges on the objects referenced in stored code that runs as the code owner if this is what you are worried about. The users just need execute on the package, procedure, or function that performs the DML operations in this case and they can get that from a role.
  If you still do not understand you need to state exactly what it is you either do not understand or want to know how to do.
  HTH -- Mark D Powell --

• Problem with granting privileges

  We are creating a separate user for loading data into staging tables on our db and are having problems granting privileges. The original user is securities_developer and the new user is securities_loader. As securities_developer, I execute the following command:
  grant delete,update,insert,select on securities_work to securities_loader;
  The output indicates success, but when I switch to that user and perform 'select * from securities_work', the table isn't found. Using Oracle Enterprise Manager, I look up the table and it indicates that the above privileges have been granted. Am I missing something?
  version info:
  Oracle Database 11g Enterprise Edition Release 11.2.0.1.0 - 64bit Production
  PL/SQL Release 11.2.0.1.0 - Production
  "CORE     11.2.0.1.0     Production"
  TNS for Linux: Version 11.2.0.1.0 - Production
  NLSRTL Version 11.2.0.1.0 - Production

  Hi,
  Do you have a (public) synonym on your table securities_work ?
  Or, try to add the schema owner in your query like: 'select * from securities_developer.securities_work'
  Regards,
  Thierry

• Error: "The user for which we are checking a privilege should be in the same org as the context provided"

  Hi All,
  Recently, we've encountered some weird error for some users when trying to assign records to them through both the CRM UI and CRM SDK Call.
  The error message saying: "The user for which we are checking a privilege should be in the same org as the context provided".
  Here is the trace log for assigning a lead for one of those users (same error for other records):
  [2010-08-09 13:58:06.0] Process: w3wp |Organization:d905ae4d-8d9f-df11-a1b0-00237df0351e |Thread:   22 |Category: Exception |User: fb56b107-949f-df11-a1b0-00237df0351e |Level: Error | CrmArgumentException..ctor
  at CrmArgumentException..ctor(String message)
  at SecurityLibrary.TryCheckPrivilege(Guid user, Guid privilege, ExecutionContext context)
  at SecurityLibrary.CheckPrivilege(Guid user, Guid privilege, ExecutionContext context)
  at SecurityLibrary.CheckPrivilege(Guid user, EntityMetadata metadata, PrivilegeType type, ExecutionContext context)
  at CascadeEngine.AssignDB(BusinessEntityMoniker moniker, SecurityPrincipal assignee, ExecutionContext context)
  at RuntimeMethodHandle._InvokeMethodFast(Object target, Object[] arguments, SignatureStruct& sig, MethodAttributes methodAttributes, RuntimeTypeHandle typeOwner)
  at RuntimeMethodInfo.Invoke(Object obj, BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture, Boolean skipVisibilityChecks)
  at RuntimeMethodInfo.Invoke(Object obj, BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture)
  at LogicalMethodInfo.Invoke(Object target, Object[] values)
  at InternalOperationPlugin.Execute(IPluginExecutionContext context)
  at PluginStep.Execute(PipelineExecutionContext context)
  at Pipeline.Execute(PipelineExecutionContext context)
  at MessageProcessor.Execute(PipelineExecutionContext context)
  at InternalMessageDispatcher.Execute(PipelineExecutionContext context)
  at ExternalMessageDispatcher.Execute(String messageName, Int32 primaryObjectTypeCode, Int32 secondaryObjectTypeCode, PropertyBag fields, CorrelationToken correlationToken, CallerOriginToken originToken, UserAuth userAuth, Guid callerId)
  at RequestBase.Process(Int32 primaryObjectTypeCode, Int32 secondaryObjectTypeCode, CorrelationToken correlationToken, CallerOriginToken originToken, UserAuth userAuth, Guid callerId)
  at RequestBase.Process(CorrelationToken correlationToken, CallerOriginToken originToken, UserAuth userAuth, Guid callerId)
  at CrmServiceInternal.Execute(RequestBase request, CorrelationToken correlationToken, CallerOriginToken originToken, UserAuth userAuth, Guid callerId)
  at InProcessCrmService.Execute(Object request)
  at PlatformCommand.ExecuteInternal()
  at AssignRouteOnCreateUpdateListener.AssignEntity(Entity entity, LookupValue owner)
  at CommunicationListener.HandlePostEvent(PlatformCommand command, Response response)
  at PlatformCommand.ExecuteInternal()
  at UpdateCommand.Execute()
  at EntityProxy.Update(Boolean performDuplicateCheck)
  at AppForm.HandleFormEventAssign(Boolean gridRefreshCallbackAdded)
  at AppForm.RaiseDataEvent(FormEventId eventId)
  at EndUserForm.Initialize(Entity entity)
  at CustomizableForm.Execute(Entity entity, String formType)
  at LeadDetailPage.ConfigureForm()
  at AppUIPage.OnPreRender(EventArgs e)
  at Control.PreRenderRecursiveInternal()
  at Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
  at Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
  at Page.ProcessRequest()
  at Page.ProcessRequest(HttpContext context)
  at sfa_leads_edit_aspx.ProcessRequest(HttpContext context)
  at CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()
  at HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
  at ApplicationStepManager.ResumeSteps(Exception error)
  at HttpApplication.System.Web.IHttpAsyncHandler.BeginProcessRequest(HttpContext context, AsyncCallback cb, Object extraData)
  at HttpRuntime.ProcessRequestInternal(HttpWorkerRequest wr)
  at HttpRuntime.ProcessRequestNoDemand(HttpWorkerRequest wr)
  at ISAPIRuntime.ProcessRequest(IntPtr ecb, Int32 iWRType)
  >Crm Exception: Message: The user for which we are checking a privilege should be in the same org as the context provided, ErrorCode: -2147220989, InnerException: System.ArgumentException: The user for which we are checking a privilege should be in the same
  org as the context provided
  I checked the user id and the organization id, and there are both correct (in the database). The user id "fb56b107-949f-df11-a1b0-00237df0351e " is actually the internal CRM System User.
  What could the issue be?
  Can anyone help, please. Thanks

  Are you sure, the User which you are assigning is in the same organisaion. It seems that the Orgname which you are specifying is not correct. and the web service is pointing to other user which is not the current ms crm organisaion.
  Could you please paste your code here for more details.?
  Thanks, Ranjitsingh R | http://mscrm-developer.blogspot.com/ | MS CRM Consultant

• Sponsored classes could not be determined; check grant

  Hi Grants gurus,
  I'm trying to create a budget document for a grant in T-CODE GM_CREATE_BUDGET, and the system issues the error "Sponsored classes could not be determined; check grant" message no. GRANTMGMT655.
  Can anybody help me please??
  Regards!!!

  Hi Cesar,
  Thank you very much for taking the time to answer my question, I try your suggestions with no success. At the end we noticed that the error was caused because the fund assigned to the grant in the dimensions tab was an internal fund. We changed it for an external fund and the error was solved.
  Now I have a different error when I try to budget a grant with proposal status, as follows:
  The GM Line amount in line 000001 is not equal to the total amount in Fiscal year distribution
  Message no. GRANTMGMT490
  Diagnosis
  The amount in GM Line in line 000001 is incorrect in comparison with Fiscal year distribution.
  System Response
  The system sets an error status value.
  Procedure
  Check the entries in the Grants Management (GM) area of the screen (upper half) and the FM fiscal year distribution (lower half) and correct the values so that they match. You can do this in one of the following ways:
  u2022     Adjust the values in both areas manually so that they match.
  u2022     Adjust the values in the FM fiscal year distribution, then press Adjust from FM to GM. If you adjust the values in this part of the screen and then try to save without pressing this button, the message appears again.
  With an awarded grant that error not appears. Have you any other suggestions?
  Thank you in advance.
  PD. up the Irons!

• Grant privileges to all objects

  Oracle 11.0.1.7.0:
  When I create new user I do something like:
  create user abc identified by abc
  grant create session, create table, create views, create snapshot to abc - separate grant for each object
  grant unlimited tablespace to abc;So when I do that sometimes I forget privileges for sequences. Is there a way to give privilege in one sql to the user to let that user create table, views, session, tablespace etc.
  Edited by: user628400 on Jun 9, 2009 5:35 PM

  Is there a list of things like create table, session etc. that I can look at to determine what options I have?select distinct privilege from role_sys_privs order by 1;
  will give you a list of privileges which can be granted to role.
  is there a way to grant privileges to all different types like create table, session etc in one statement without having to type each one of them separately like grant create session, grant table?As other replied, this can be achieved by creating a role like:
  SQL> create role newrole;
  Role created.
  SQL> grant create table,query rewrite to newrole;  -- Or any privilege by above command.
  Grant succeeded.
  SQL> grant newrole to <YourUserName>;  --
  Grant succeeded.HTH
  Girish Sharma

• Grant Privileges to another user

  Hi,
  I am new to plsql. In course of my learning. I created two tables BOOKS and AUTHORS in orcl database(10g) through SYSDBA.
  Again i logged in to SCOTT user account and am unable to see the BOOKS and AUTHORS tables.
  Please let me know how do i grant administrative privileges(to edit,delete,insert,update) to SCOTT user for these tables.
  Thanks & Regards,
  Amrutha.

  808099 wrote:
  1. Got now that SYSDBA is a role and SYS is user.
  2. I was able to login to sqlplus through giving "/ as SYSDBA" as the username. Hence i thought it as user."/ as sysdba" connects to the database as the SYS user using operating system authentication with the SYSDBA role enabled.
  3. Secondly, I dont know which schema does my BOOKS table belong to. Because i just ran a create table script in scott/tiger@orcl. PLease suggest how i can know which schema it belongs to.If you connected to the database as the SCOTT user and ran the script to create the table, the table would almost certainly be owned by SCOTT. If you connected to the database as the SYS user and ran the script to create the table, the table would most likely be owned by SYS. If the script specified the schema owner, i.e.
  CREATE TABLE library.book ...the table would be created in the specified schema. But you need to have very powerful privileges in order to create objects in other user's schemas and SCOTT does not have those privileges unless you've specifically granted them.
  4. Thirdly, I will delete the BOOKS and AUTHORS from SYS and create them in SCOTT user. But thought if GRANT privileges can be an alternative.Not really. It's much better to have the tables owned by the correct schema in the first place. You use grants to allow other users to access (or modify) tables but other users are not going to have the same level of privileges (for example, they're not going to be able to run DDL against the table).
  Justin

• Grant privileges to user

  hi all,
  How to create and grant privileges to user using sql command.
  Thanks

  Hi,
  Example :-
  log on as sysdba
  grant connect, resource to test identified by test;
  test is the user.
  Go through this links
  http://download.oracle.com/docs/cd/B19306_01/server.102/b14200/statements_8003.htm#SQLRF01503
  http://download.oracle.com/docs/cd/B19306_01/server.102/b14200/statements_9013.htm#SQLRF01603
  Thanks
  Pavan Kumar N

• ORACLE - How to GRANT privilegies on ALL the tables belonging to a schema

  Is there a way to grant to a user the same privilegies on ALL the tables belonging to the same schema, so that, in case a new table is created afterwards, the grant is automatically given ?
  Thanks in adance for any reply

  Yes of course ! Just do the same as Oracle Applications: an end user has no Oracle account, the application code connects with the Oracle account that is the schema owner:
  no more grant needed ... That's a joke but it's also true ! In this case, your application must implement its own security (password management, audit, privileges) and you will not be able to use Oracle privileges, auditing and advanced security features ... just like Oracle Applications.
  The above answers are of course correct. You can also create an Oracle role that you can grant to the Oracle users and grant the privileges to this role everytime a new table is created to avoid granting privileges for each new object to each user.