All Forums Connectivity
Allan Pomeroy 1 post Joined 05/07
07 May 2007
Is it possible to do connection pooling and recognize the user at the same time?

We want to use connection pooling in Teradata JDBC, but also to set the user context for each SQL statement to reflect the individual user on behalf of whom the application is making the individual request, in a way that can be recognized by our database views so they can use the individual userid to enforce row-level security. Is this possible in Teradata? If so, how do we accomplish it?I searched the Archives and read the JDBC user manual. Unfortuantely I didn't see an answer in either of those sources. I'd appreciate any help you can offer.ThanksAllan Pomeroy

tomnolan 594 posts Joined 01/08
05 Jul 2012

Teradata Database 13.0 and later offer a "PROXYUSER" feature that is specified via the SET QUERY_BAND command. It can permit a pooled connection to temporarily impersonate a different database user.

Teradata Database 13.10 and later offer a feature called "Trusted Sessions Enhanced Security" to limit only "Trusted SQL" to use SET QUERY_BAND to set or remove the current proxy user.

Finally, Teradata Database 14.0 offers row-level security.

So the answer to your question is Yes, this is possible with Teradata Database 14.0. You can use the PROXYUSER feature in conjunction with row-level security.

You must sign in to leave a comment.