SQL Server 2005 db_denydatawriter example query

I'm trying to add mydomain\myuser to the db_denydatawriter role but i can find a simple example of the query does anybody have a quick example?

3 steps, in case you haven't set up login + user already

CREATE LOGIN [mydomain\myuser] FROM WINDOWS; at the server level. MSDN
CREATE USER [mydomain\myuser] FROM LOGIN [mydomain\myuser]; at the db level. MSDN
Match user to role EXEC sp_addrolemember 'mydomain\myuser', 'db_denydatawriter'

Edit:

This only prevents INSERT, UPDATE and DELETE directly on the tables

It won't stop changing table design. That is ddl_admin or db_owner. db_owner rights override all other permissions so deny will have no effect.

If writes are via stored procs, ownership chaining means permissions are not checked on a table. So this answer won't work.

EXEC sp_addrolemember N'db_denydatawriter', N'Foo'

Reference here.

来源：https://stackoverflow.com/questions/4563186/sql-server-2005-db-denydatawriter-example-query

标签

易学教程内所有资源均来自网络或用户发布的内容，如有违反法律规定的内容欢迎反馈！
该文章没有解决你所遇到的问题?点击提问,说说你的问题,让更多的人一起探讨吧!