NauticalGent
Ignore List Poster Boy
- Local time
- Today, 12:37
- Joined
- Apr 27, 2015
- Messages
- 7,054
I’ve been asked — more accurately, tasked — to provide a government employee with access to the data in the app I maintain. I considered opening the back end in read-only mode, but that won’t work because the primary need is to run queries for analysis. He wants to crunch numbers without changing anything, and even if he understood the distinction between non-action and action queries and promised to behave, I’m not comfortable granting that level of access. The security controls I have can be bypassed by someone determined, and I’m not willing to take that risk.
A safer approach would be to create a secured copy of the back end (for example, a script that copies the BE to a controlled folder) and give him access to that copy for his analysis. I believe that provides the functionality he needs while protecting production data, but I wanted to solicit any other ideas from the group before I proceed.
A safer approach would be to create a secured copy of the back end (for example, a script that copies the BE to a controlled folder) and give him access to that copy for his analysis. I believe that provides the functionality he needs while protecting production data, but I wanted to solicit any other ideas from the group before I proceed.