SQL to Grant EXECUTE permission to all Procedures and Functions
Syntax for Granting EXECUTE permissions on system objects such as stored procedures, extended stored procedures, functions, and views is
GRANT EXECUTE ON <<object_name>> TO <<user_name>>;
The following example grants EXECUTE permission on sp_test(procedure name) to John (user name).
GRANT EXECUTE ON sp_test TO John;
The result of the following example grants EXECUTE permission to testuser for all user created procedures.
declare @username varchar(255) set @username = 'testuser' SELECT 'grant exec on ' + QUOTENAME(ROUTINE_SCHEMA) + '.' + QUOTENAME(ROUTINE_NAME) + ' TO ' + @username FROM INFORMATION_SCHEMA.ROUTINES WHERE OBJECTPROPERTY(OBJECT_ID(ROUTINE_NAME),'IsMSShipped') = 0 and ROUTINE_TYPE='PROCEDURE'
The result of the following example grants EXECUTE permission to testuser for all user created functions.
declare @username varchar(255) set @username = 'testuser' SELECT 'grant exec on ' + QUOTENAME(ROUTINE_SCHEMA) + '.' + QUOTENAME(ROUTINE_NAME) + ' TO ' + @username FROM INFORMATION_SCHEMA.ROUTINES WHERE OBJECTPROPERTY(OBJECT_ID(ROUTINE_NAME),'IsMSShipped') = 0 and ROUTINE_TYPE='FUNCTION'
INFORMATION_SCHEMA.ROUTINES gives all the information about procedures and functions on current database.
OBJECTPROPERTY function returns property of the given objectid and propertyname.
OBJECT_ID gives the object id of given object name.
IsMSShipped property determines whether object created during installation of SQL Server. By checking IsMSShipped property to 0 reveals that object are created by user and not system objects.
QUOTENAME returns a Unicode string with the delimiters added to make the input string a valid identifier which should used when contructing dynamic SQL as above from user input.
Leave a reply
Comments
- Prodis says:
Jul 14, 09This information has just helped to solve a permission problem in an application quickly. Thanks for the post.
- Cyrille says:
Oct 27, 10Thanks, helped me a lot.
- Matt says:
Jan 25, 11The check for IsMSShipped should be IS NULL, not =0. Otherwise, great!
- Matt says:
Jan 25, 11Actually, I looked into this more deeply and it seems that certain properties are not available from OBJECTPROPERTY and you null back if you try to get them. Apparently MS locked down the visibility of certain schema elements as a response to particular security threats. So you have have to have rights to see the properties before you can access them.
Related Posts
- Schedule Sql Server Job to run every 30 Seconds
- T-SQL to find Procedures/Commands used in Sql Server Jobs
- Selecting Random Rows from a Table in SQL Server
- Useful SQL Server Management Studio Keyboard Shortcuts
- Case-sensitive check/search/match in T-SQL - Sql Server 2005
- Get AM/PM in Sql Server DateTime Format
- Replace/Remove Special Characters in Sql Server 2005/2008
- Create Linked Server in Sql Server 2005
- Alter/Change new Default Value of a Column in already created Table
- T-SQL to Disable/Enable Job in SQL Server 2005
- Invoke URL from Sql Server 2005 Stored Procedure
- T-SQL to change schema/owner name in Sql Server
- Delete Statement with inner join in Sql Server 2005
- Transpose Rows to Columns in Sql Server 2005 using PIVOT
- Transpose Columns to Rows in Sql Server 2005 using UNPIVOT
- Split Function in Sql Server to break Comma-Separated Strings into Table
- Delete duplicate rows on table with/without primary key in Sql Server 2005
- Sql server: Special Characters (%,[,]) in LIKE operator using ESCAPE keyword
- Pagination in Sql Server 2005
- Transact-SQL to get description of column in Sql Server 2005 using fn_listextendedproperty
- Search text/string|Find keyword in Sql Server Function and Procedure
- Title case (Proper case) Function in Sql Server 2005
- Cursor For Converting Rows to Column in Sql Server
- Changes Row to Columns (Transpose) in Sql Server 2005 using COALESCE
