Table of Contents

Search

  1. Preface
  2. Introduction to Dynamic Data Masking
  3. Rules
  4. Connection Rules
  5. Security Rules
  6. Security Rule Set Simulator
  7. Masking Functions
  8. Glossary

Rewrite Select List Example

Rewrite Select List Example

The following example is a simple method you can use to view the values of the global variable for a session.
Create a security rule that rewrites an SQL request, such as
SELECT * FROM ALL_GLOBALS
, and replaces the SQL request with the following query, based on the database management system type:
Oracle
select '\(CLIENT_IP)' "Client IP", '\(AUTH_USERNAME)' "Username",'\(AUTH_SID)' "OS User",'\(AUTH_MACHINE)' "Host name", '\(AUTH_TERMINAL)' "OS user name", '\(AUTH_SERIAL_NUM)' "SERIAL#", '\(AUTH_PROGRAM_NM)' "Program",'\(AUTH_DATABASE_NAME)' "DDM Name",'\(AUTH_SESSION_ID)' "SID", '\(AUTH_CURRENT_DATABASE)' "Current Database" from dual
IBM DB2
select '\(CLIENT_IP)' "Client IP", '\(AUTH_USERNAME)' "Username",'\(AUTH_SID)' "OS User",'\(AUTH_MACHINE)' "Host name", '\(AUTH_TERMINAL)' "OS user name", '\(AUTH_SERIAL_NUM)' "SERIAL#", '\(AUTH_PROGRAM_NM)' "Program",'\(AUTH_DATABASE_NAME)' "DDM Name",'\(AUTH_SESSION_ID)' "SID", '\(AUTH_CURRENT_DATABASE)' "Current Database" from sysibm.sysdummy1
Microsoft SQL Server
select '\(CLIENT_IP)' "Client IP", '\(AUTH_USERNAME)' "Username",'\(AUTH_SID)' "OS User",'\(AUTH_MACHINE)' "Host name", '\(AUTH_TERMINAL)' "OS user name", '\(AUTH_SERIAL_NUM)' "SERIAL#", '\(AUTH_PROGRAM_NM)' "Program",'\(AUTH_DATABASE_NAME)' "DDM Name",'\(AUTH_SESSION_ID)' "SID", '\(AUTH_CURRENT_DATABASE)' "Current Database"