Sign in Subscribe
Compare

Fine-grained access control in SQL*Plus with Oracle VPD

Andrios Robert

1 min read

The query runs. The rows appear. But not every user should see every row.

Fine-grained access control in SQL*Plus keeps sensitive data hidden while letting authorized operations flow. It is not about broad privileges. It is about rules at the row and column level. Oracle calls this Virtual Private Database (VPD). It works by attaching policies to tables or views, filtering results transparently based on the session context.

Using fine-grained access control in SQL*Plus means writing PL/SQL policy functions, then binding them to database objects with DBMS_RLS.ADD_POLICY. The policy checks who is logged in, what role they have, or other attributes such as IP or department ID. SQL*Plus itself has no native filter logic—it connects to Oracle Database and executes SQL, so the real control lives inside the database.

A common step-by-step pattern looks like this:

  1. Create a context with DBMS_SESSION.SET_CONTEXT.
  2. Write the policy function that returns a predicate, e.g., department_id = SYS_CONTEXT('my_ctx', 'dept_id').
  3. Bind the policy with DBMS_RLS.ADD_POLICY to the target table or view.
  4. Run queries in SQL*Plus as different users to verify they only see the permitted subset of rows.

Fine-grained access control in SQL*Plus scales because it is centralized. Application code stays simple. Enforcement happens automatically, regardless of whether the query came from SQL*Plus, JDBC, or any other Oracle client.

Performance matters. Policies add predicates to queries, so write them with indexes in mind. Test with real data volume. Log execution plans. The tighter the predicate, the faster the response.

Security matters more. Do not rely on client-side filtering in SQL*Plus scripts. Always embed the rules in the database itself. That way, even if credentials leak or someone runs ad-hoc SQL in SQL*Plus, they see only what the policy allows.

Fine-grained access control with SQL*Plus and Oracle VPD is a practical defense against data leakage in mixed-access environments. It gives you surgical precision over who sees what, and it does it without rewriting your existing queries.

See it live in minutes—connect it to your data model now at hoop.dev and build instant fine-grained controls without the overhead.

Sign up for more like this.

Enter your email
Subscribe