never mind - found the paragraph in the manual..
<quote>
The |SQL SECURITY| characteristic can be used to specify whether the
routine should be executed using the permissions of the user who creates
the routine or the user who invokes it. The default value is |DEFINER|.
This feature is new in SQL:2003. The creator or invoker must have
permission to access the database with which the routine is associated.
As of MySQL 5.0.3, it is necessary to have the |EXECUTE| privilege to be
able to execute the routine. The user that must have this privilege is
either the definer or invoker, depending on how the |SQL SECURITY|
characteristic is set.
</quote.
Ligaya Turmelle wrote:
Am I understanding this correctly?
SQL SECURITY DEFINER...
DEFINER - make sure the person who wrote this procedure had the
authority/permissions to do everything in it and runs or not based on
that,
INVOKER - make sure the person who uses this procedure has the
authority/permissions to do everything in it and runs or not based on
that
--
Respectfully,
Ligaya Turmelle
"Life is a game.... so have fun"
--
MySQL General Mailing List
For list archives: http://lists.mysql.com/mysql
To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED]
