Clarify view bypass lab access paths
Some checks failed
Repo Quality / structure (push) Has been cancelled
Some checks failed
Repo Quality / structure (push) Has been cancelled
This commit is contained in:
@@ -1,6 +1,13 @@
|
||||
# Expected Results
|
||||
|
||||
## Before Oracle Deep Data Security
|
||||
|
||||
- Direct table access can return accounts owned by other users.
|
||||
- The legacy view returns only the current user's account because it contains the intended owner filter.
|
||||
- The control depends on users and tools using the correct access path.
|
||||
|
||||
## After Oracle Deep Data Security
|
||||
|
||||
- The base table returns only the account owned by the current end user.
|
||||
- The view returns the same restricted rows.
|
||||
- The broad view data grant does not bypass the base table policy when MAC is enabled.
|
||||
|
||||
- Direct table access no longer bypasses the base table policy when MAC is enabled.
|
||||
|
||||
Reference in New Issue
Block a user