Blocking Adopted Authority Propagation

Adopted authority is an attribute of programs, service programs, and SQL packages that, when invoked, passes the authority of its owner to program users — in effect giving the program users their own authorities plus the authority of the program, service program, or SQL package’s owner. The user keeps this augmented authority for as long as the program is in the invocation stack. Adopted authority is used to temporarily give users access for some specialized purpose to objects they normally can’t reach.

When a program adopts its owner’s authority, that authority also includes any special authorities the owner may have. However, if the owner is a member of a group, the group’s authority is not included in an adopted authority.

Download the save file containing the source code.

Read the entire article

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s