I have my SqlServer 2005 database at a web host. I recently figured out how to set permissions for the stored procedures (see this link if you face the same problem: http://forums.asp.net/t/1600637.aspx) .
Now I wonder: What permissions should I give the web site's visitors?
In a stored procedure's Properties window, I have three availabale users, the db owner (the db name), "guest" and "public". My bet is on public.
As far as permission types go, I hev the following available:
Alter, Control, Execute, Take Ownership, and View Definition. My guess is that the one of interest is Execute, correct?
In other words, should I set all stored procedures to Execute for public (not that I seem to have the permission to do that myself - I get an error message when I try to alter them)? If so, could I ask the web host to set them globally for me? Or should I only set stored procedure using UPDATE/INSERT/DELETE to Execute?
Thanks a lot for any replies,
View Complete Post