Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Permission for querying dbo.sysobjects

Tags:

sql-server-2008

I have the following query to check whether there are any user defined objects in my SQL DB.

DECLARE @testForEmpty BIT
if exists 
    (select top 1 null from dbo.sysobjects where (objectproperty(id, 'IsMsShipped') = 0)) 
        set @testForEmpty = 0 
else set @testForEmpty = 1

When I run this query as a specific user, I am aways getting testForEmpty = 1. This meant that the if exists call returns empty rows.

However if I add the user as sysadmin, then I get the testFormEmpty value as 0 and atleast one row is getting selected.

I do not want to add the user as sysadmin. What is the minimum role / permissions that I should grant so that the select from dbo.sysobjects returns the content.

Thanks

like image 635
Venki Avatar asked Dec 02 '11 12:12

Venki

People also ask

What is DBO Sysobjects?

sysobjects contains one row for each table, view, stored procedure, extended stored procedure, log, rule, default, trigger, check constraint, referential constraint, computed column, function-based index key, and (in tempdb only) temporary object, and other forms of compiled objects.

How do I grant permission to view SQL?

For the existing view, you can go to the Properties of the view in SSMS, add users in the Permissions, and then grant select permission in the permissions list. Or use the following statement to grant user permissions: GRANT SELECT ON OBJECT::[schema]. [yourview] TO User1,User2.

What is the DBO in SQL Server?

The dbo schema is the default schema of every database. By default, users created with the CREATE USER Transact-SQL command have dbo as their default schema. The dbo schema is owned by the dbo user account. Users who are assigned the dbo as default schema don't inherit the permissions of the dbo user account.

1 Answers

First - you should use sys.objects instead of dbo.sysobjects. dbo.sysobjects is a SQL 2000 construct that is only in SQL 2008 for backward-compatibility reasons. sys.objects contains a row for each user-defined, schema-scoped object that is created within a database, so you wouldn't have to filter your query at all. sys.all_objects is a superset, that contains both system and user objects.

Second - on the permission side - in SQL Server 2005 and later versions, the visibility of the metadata in catalog views is limited to securables that a user either owns or on which the user has been granted some permission. So your user will have to be granted some permission on the items it is looking for. Granting VIEW DEFINITION to the user on the schema(s) in the database would allow the query to work, without granting access to any data.

like image 80
Brian Knight Avatar answered Sep 28 '22 08:09

Brian Knight
Sign in to Comment

Related questions

Select columns from one table based on the column names from another table
Count number of rows without using any aggregate functions
USING Common Table Expression and perform multiple update commands
Using INSERT and/or UPDATE together from a single CTE
WHERE IN (SELECT NonExistingColumnName) causes unexpected behaviour
Can you remove Identity from a primary key with Entity Framework 6?
What is the best way to query a database for records within n miles of a zip code?
Anyone used SQl Server 2008 HierarchialID type to store genealogy data
Getting DateTimeOffset value from SQL 2008 to C#
Restoring SQL 2008 R2 db on SQL 2008 Standard
SQL Server scalar function vs. subquery execution plan analysis
Proper use of a nested Case statement in a SQL Case Statement
Restore SQL Server Database - failed: 38(Reached the end of the file.)
Extract substring from string in SQL
SQL Get the first occurance of the 15th for a date
Upgrade from SQL Server 2008 Standard to Developer?
How can I sort the output of a generated SQL script?
Select From a table that is constantly being inserted into
How to I modify this t-sql query to return the maximum value for different column names?
T-SQL Is it possible to do an Update / Insert with a single fast operation

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!