Granting privileges to the Workflow Manager workspace components in Oracle
The geodatabase administrator must grant specific privileges to the tables for all users who will be accessing the Workflow Manager workspace. This can be accomplished by creating database roles and assigning the roles to the individual users.
Note:Copying and pasting the example may cause syntax errors.
Granting permissions
In Oracle SQL Plus or Oracle SQL Developer, grant permissions to the Workflow Manager workspace tables through the schema. The sample script shows how to remove existing members from a role and drop the roles, and re-create the role and assign permissions to the role through the schema.
SET SERVEROUTPUT ON;
spool Roles_wmx.sql;
DROP ROLE "RLWMXEDITOR";
CREATE ROLE "RLWMXEDITOR" NOT IDENTIFIED;
DROP ROLE "RLWMXVIEWER";
CREATE ROLE "RLWMXVIEWER" NOT IDENTIFIED;
select 'grant select on ' ||owner|| '.' || table_name || ' to RLWMXVIEWER;'
from sys.dba_tables where lower(owner) = 'wmx' order by table_name;
select 'grant select,insert,update,delete on ' ||owner|| '.' || table_name || ' to RLWMXEDITOR;'
from sys.dba_tables where lower(owner) = 'wmx' order by table_name;
spool off;
SET SERVEROUTPUT ON;
/
@Roles_wmx.sql;
/
Creating an editor user
Users should have their own login names. The example below shows how to create an editor ArcSDE user and grant the RLWMXEDITOR role to the ArcSDE editor user.
Create the editor user.
CREATE USER WMX_EDITOR PROFILE "DEFAULT"
IDENTIFIED BY editor
DEFAULT TABLESPACE "USERS"
TEMPORARY TABLESPACE "TEMP" ACCOUNT UNLOCK;
GRANT "CONNECT" TO "WMX_EDITOR";
GRANT CREATE TABLE TO "WMX_EDITOR";
GRANT "RLWMXEDITOR" TO "WMX_EDITOR";
/*-- RLWMXEDITOR role has SELECT, INSERT, UPDATE and DELETE permission on the WMX data (featureclasses, tables, etc.)
ALTER USER WMX_EDITOR QUOTA UNLIMITED ON "SDELOGFILE";
ALTER USER WMX_EDITOR QUOTA UNLIMITED ON "SDELOGFILEIDX";
Creating a viewer user
Users should have their own login names. The example below shows how to create a viewer ArcSDE user and grant the RLWMXVIEWER role to the ArcSDE viewer user.
Create the viewer user.
CREATE USER WMX_VIEWER PROFILE "DEFAULT"
IDENTIFIED BY viewer
DEFAULT TABLESPACE "USERS"
TEMPORARY TABLESPACE "TEMP" ACCOUNT UNLOCK;
GRANT "CONNECT" TO "WMX_VIEWER";
GRANT CREATE TABLE TO "WMX_VIEWER";
GRANT "RLWMXVIEWER" TO "WMX_VIEWER";
/*-- GISVIEWER role has SELECT permission on the WMX data (featureclasses, tables, etc.)
ALTER USER WMX_VIEWER QUOTA UNLIMITED ON "SDELOGFILE";
ALTER USER WMX_VIEWER QUOTA UNLIMITED ON "SDELOGFILEIDX";