peteh wrote:
> Hi All;
> In DB2 LUW 8.2 (and v9 for that matter):
> * I have a table myTable
> * I have a group STAFF
> * I have a user USER1 who is a member of group STAFF
> * Group STAFF has SELECT and/or SELECT WITH GRANT OPTION on myTable
>
> Can USER1 create a stored proc that selects from myTable? Or do I have
> to explicitly GRANT SELECT on myTable to USER1? Is there any way to
> avoid explicit grants to individual users on every object they might
> write a procedure against? In production, that's not such a big deal,
> but for development environment it seems like ALOT of administration...
> Thanks for any thoughts on the subject.
Since DB2 does not control OS groups it has no means to act if a user
falls out of a group. Thus group privileges are only used for dynamic SQL.
Since you are dealing with a development environment would PUBLIC be an
option?

Cheers
Serge

--
Serge Rielau
DB2 Solutions Development
IBM Toronto Lab

WAIUG Conference
http://www.iiug.org/waiug/present/Fo...Forum2006.html