General Information
Library Note
Morgan's Library Page Header
Purpose
Real Application Security
AUTHID
CURRENT_USER
Constants
Name
Data Type
Value
COMMON_WORKSPACE
VARCHAR2(6)
'XS'
SCHEMA_ACL
VARCHAR2(13)
'XS$SCHEMA_ACL'
XSCONNECT
VARCHAR2(9)
'XSCONNECT'
STRING_MAXLEN
PLS_INTEGER
4000
NON_EMPTY_STRING_MINLEN
PLS_INTEGER
1
STRING_MINLEN
PLS_INTEGER
0
XSNAME_MINLEN
PLS_INTEGER
1
XSNAME_MAXLEN
PLS_INTEGER
130
PARAMNAME_MINLEN
PLS_INTEGER
1
PARAMNAME_MAXLEN
PLS_INTEGER
128
XSQNAME_MINLEN
PLS_INTEGER
1
XSQNAME_MAXLEN
PLS_INTEGER
261
EXTERNAL_NAME_MINLEN
PLS_INTEGER
1
EXTERNAL_NAME_MAXLEN
PLS_INTEGER
130
WORKSPACE_MINLEN
PLS_INTEGER
1
WORKSPACE_MAXLEN
PLS_INTEGER
128
DBNAME_MINLEN
PLS_INTEGER
1
DBNAME_MAXLEN
PLS_INTEGER
130
OBJTYPE_PRINCIPAL
PLS_INTEGER
1
OBJTYPE_SECURITY_CLASS
PLS_INTEGER
2
OBJTYPE_ACL
PLS_INTEGER
3
OBJTYPE_PRIVILEGE
PLS_INTEGER
4
OBJTYPE_DATA_SECURITY
PLS_INTEGER
5
OBJTYPE_ROLESET
PLS_INTEGER
6
OBJTYPE_NSTEMPL
PLS_INTEGER
7
OBJTYPE_SYSOP
PLS_INTEGER
101
OBJTYPE_ADMOP
PLS_INTEGER
102
OBJTYPE_APPLY_POLICY
PLS_INTEGER
103
OBJTYPE_GRANTOP
PLS_INTEGER
104
OBJTYPE_REVOKEOP
PLS_INTEGER
105
OBJTYPE_SET_POLICY
PLS_INTEGER
106
Delete Options
DEFAULT_OPTION
PLS_INTEGER
1
CASCADE_OPTION
PLS_INTEGER
2
ALLOW_INCONSISTENCIES_OPTION
PLS_INTEGER
3
Specify if an object exists in the base table or not
STATUS_NOT_EXISTS
PLS_INTEGER
0
STATUS_EXISTS
PLS_INTEGER
1
Principal Type Definition
PTYPE_XS
PLS_INTEGER
1
PTYPE_DB
PLS_INTEGER
2
PTYPE_DN
PLS_INTEGER
3
PTYPE_EXTERNAL
PLS_INTEGER
4
Dependencies
DBMS_NETWORK_ACL_ADMIN
XS$OBJ XS_DATA_SECURITY_UTIL_INT
DBMS_RXS_LIB
XS$PRIVILEGE XS_DIAG
DBMS_SFW_ACL_ADMIN
XS$REALM_CONSTRAINT_TYPE XS_DIAG_INT
DBMS_STANDARD
XS$ROLE_GRANT_TYPE XS_NAMESPACE
DBMS_WRR_PROTECTED
XS_ACL
XS_NAMESPACE_INT
DBMS_XDS_INT
XS_ACL_INT
XS_PRINCIPAL
DBMS_XSS_LIB
XS_ADMIN_INT
XS_PRINCIPAL_INT
XS$ACE_TYPE XS_ADMIN_UTIL_INT
XS_ROLESET
XS$COLUMN_CONSTRAINT_TYPE XS_DATA_SECURITY
XS_ROLESET_INT
XS$KEY_TYPE XS_DATA_SECURITY_INT
XS_SECURITY_CLASS
XS$NS_ATTRIBUTE XS_DATA_SECURITY_UTIL
XS_SECURITY_CLASS_INT
Documented
Yes
Exceptions
Error Code
Reason
1031
ERR_INSUFFICIENT_PRIV
28222
ERR_RESERVED_USER
46025
ERR_NO_STATIC_RULE
46055
ERR_ROLE_NOT_GRANTED
46076
ERR_INVALID_LENGTH
46083
ERR_SET_PRIN_GUID
46084
ERR_DROP_SEEDED_OBJ
46085
ERR_NO_PROXY_ROLES
46096
ERR_DEFV_FREVNT_COEXIST
46097
ERR_NO_ROLESET_ROLE
46098
ERR_DUP_PARENT
46099
ERR_FEATURE_NOT_SUPPORTED
46101
ERR_AGGR_CYCLE CONSTANT NUMBER
46103
ERR_SECCLS_CYCLE
46116
ERR_ACL_REFERREDBY_NSTEMPLATE
46117
ERR_ACL_REFERREDBY_PRINCIPLAL
46118
ERR_ACL_SCHEMA_NOT_SYS
46119
ERR_ACL_IS_NULL
46152
ERR_INVALID_VALUE
46202
ERR_NO_HANDLER_FUNC
46211
ERR_INVALID_ENTITY_LENGTH
46212
ERR_DUP_NAME
46214
ERR_OBJ_REFERRED
46215
ERR_INVALID_OBJECT
46230
ERR_INTERNAL
46231
ERR_GRANT_ROLE
46232
ERR_ROLE_GRANT_CYCLE
46233
ERR_PARENT_ACL_CYCLE
46235
ERR_NO_POLICY_PARAMETER
46236
ERR_INVALID_POLICY_TYPE
46237
ERR_MIDTIER_CACHE
46238
ERR_NO_DB_USER_ROLE
46240
ERR_PROXY_SCHEMA_EXIST
46241
ERR_PROXY_SCHEMA_NOT_EXIST
46242
ERR_GRANT_ROLE_XSGUEST
First Available
12.1
Security Model
Owned by SYS with EXECUTE granted to PUBLIC
Source
{ORACLE_HOME}/rdbms/admin/xsutil.sql
Subprograms
CHECK_LENGTH
Returns an exception if the test string's length is not between the min and max boundaries
xs_admin_util.check_length(
exec xs_admin_util.check_length ('TEST', 1, 10);PL/SQL procedure successfully completed. xs_admin_util.check_length ('TEST', 7, 10); *
CHECK_SEEDED
Check whether the object is seeded or not, internal use
xs_admin_util.check_seeded(obj_id IN NUMBER);
-- appears to do precisely nothing xs_admin_util.check_seeded (18);PL/SQL procedure successfully completed. xs_admin_util.check_seeded (89999);PL/SQL procedure successfully completed. xs_admin_util.check_seeded (-1);PL/SQL procedure successfully completed.
DROP_SCHEMA_OBJECTS
Drop schema objects under a schema
xs_admin_util.drop_schema_objects(schema_name IN VARCHAR2);
-- appears to do precisely nothing xs_admin_util.drop_schema_objects ('C##ZZYZX');USERNAME
GET_DEFAULT_WORKSPACE
Returns the name of the default RAS workspace
xs_admin_util.get_default_workspace RETURN VARCHAR2;
SELECT xs_admin_util.get_default_workspace ;
GET_OBJECT_ID
Called by ADMIN APIs for internal use only returns the object ID
xs_admin_util.get_object_id(
TBD
GRANT_SYSTEM_PRIVILEGE
Grant system privilege to a user/role
xs_admin_util.grant_system_privilege(
conn sys@pdbdev as sysdbaxs_admin_util.grant_system_privilege ('ADMINISTER_SESSION', 'UWCLASS');PL/SQL procedure successfully completed.
RAISE_ERROR
Raises a RAS application error
xs_admin_util.raise_error(
exec xs_admin_util.raise_error (-600, 'Just What We Need'); * xs_admin_util.raise_error (46084, 'Just What We Need'); *
REMOVE_DBUSER_ACES
Revoke system privilege from a user/role with RAS privs
xs_admin_util.remove_dbuser_aces(user_name IN VARCHAR2);
exec xs_admin_util.remove_dbuser_aces ('UWCLASS');PL/SQL procedure successfully completed.
REVOKE_SYSTEM_PRIVILEGE
Revoke System privilege from a user/role
xs_admin_util.revoke_system_privilege(
conn sys@pdbdev as sysdbaxs_admin_util.revoke_system_privilege ('ADMINISTER_SESSION', 'UWCLASS');PL/SQL procedure successfully completed.
SET_DEFAULT_WORKSPACE
Sets the default workspace name
xs_admin_util.set_default_workspace(workspace IN VARCHAR2);
exec xs_admin_util.set_default_workspace ('XS');PL/SQL procedure successfully completed.
VALIDATE_DB_OBJECT_NAME
Validate DB object name. Internal use only.
xs_admin_util.validate_db_object_name(
DECLARExs_admin_util.validate_db_object_name ('N0n Sense ', outVal, 'ReadTheDocs ');* xs_admin_util.validate_db_object_name ('N0nSense ', outVal);N0NSENSE
VALIDATE_DB_USER
Validate DB user/schema. Internal use
xs_admin_util.validate_db_user(
exec xs_admin_util.validate_db_user ('N0nSense', 'Bad Choice') *
XSNAME_TO_ID
Utility Function: XS name to ID
xs_admin_util.xsname_to_id(
SELECT owner, nameOWNER NAME xs_admin_util.xsname_to_id ('ADMINISTER_SESSION', 1);