Proxy Accounts
Prior to SQL Server version 2005, users assigned a public role could view metadata for all database objects. Consequently, any user who was logged on to a SQL Server instance could view the metadata for every object in the server, including objects for which the user had no rights.
As of SQL Server version 2005, the visibility of metadata is limited to those securables owned by a user or for which the user has been granted permission.
To allow callers to view metadata, you can grant them the VIEW DEFINITION permission at an appropriate level. For example, you can grant permissions at the object level, database level, or server level. You can also modify the stored procedure so that it executes under the credentials of the owner.
Note –
For more information, see http://msdn.microsoft.com/en-us/library/ms187113.aspx.
- © 2010, Oracle Corporation and/or its affiliates