我想获取给定数据库中的表列表以及对给定用户没有更新权限的给定模式。
我该怎么做?
答案 0 :(得分:1)
以下应该工作。
基于此我已经修改了一个脚本并在列表中添加了对象类型descirption,该列表显示了用户,对象,权限类型,权限的表
因此您可以添加caluse过滤到user_table对象的位置,进一步按用户和权限类型进行过滤
declare @type_desc varchar(100)
declare @user varchar(100)
WITH perms_cte as
(
select USER_NAME(p.grantee_principal_id) AS principal_name,
dp.principal_id,
dp.type_desc AS principal_type_desc,
p.class_desc,
OBJECT_NAME(p.major_id) AS object_name,
o.type_desc,
p.permission_name,
p.state_desc AS permission_state_desc
from sys.database_permissions p
inner JOIN sys.database_principals dp
on p.grantee_principal_id = dp.principal_id
inner join sys.objects o
on o.object_id =p.major_id
)
--users
SELECT p.principal_name, p.principal_type_desc, p.class_desc, p.[object_name], p.type_desc,p.permission_name, p.permission_state_desc, cast(NULL as sysname) as role_name
--select *
FROM perms_cte p
WHERE principal_type_desc <> 'DATABASE_ROLE'
UNION
--role members
SELECT rm.member_principal_name, rm.principal_type_desc, p.class_desc, p.object_name, p.type_desc,p.permission_name, p.permission_state_desc,rm.role_name
FROM perms_cte p
right outer JOIN (
select role_principal_id, dp.type_desc as principal_type_desc, member_principal_id,user_name(member_principal_id) as member_principal_name,user_name(role_principal_id) as role_name--,*
from sys.database_role_members rm
INNER JOIN sys.database_principals dp
ON rm.member_principal_id = dp.principal_id
) rm
ON rm.role_principal_id = p.principal_id
order by 1