Schema data access authority (DATAACCESS)

Schema DATAACCESS authority allows users access to data within a specific schema on which it is granted.

Schema DATAACCESS authority can only be granted or revoked by a user holding database SECADM or database ACCESSCTRL authority or schema ACCESSCTRL authority. It can be granted to a user, a group, or a role. However, it cannot be granted with grant option or be granted on any schema whose name begins with the "SYS". Additionally, PUBLIC cannot obtain the Schema DATAACCESS authority directly or indirectly through a role.

For all tables, views, materialized query tables, and nicknames defined in a schema it gives the following authority and privileges:

• Schema LOAD authority
• SELECT privilege
• INSERT privilege
• UPDATE privilege
• DELETE privilege

In addition, schema DATAACCESS authority provides the following privileges:

• EXECUTE privilege on routines and packages defined in the schema
• READ, WRITE (except variables which are read-only) privilege on all global variables defined in the schema
• USAGE privilege on all XSR objects defined in the schema
• USAGE privilege on all sequences defined in the schema

The authority is the subset of the database DATAACCESS authority with its scope limited only to the schema on which it is granted.