Trigger to track user password changes in table

I need to create a trigger which tracks user password changes into a table my_table. I have a database user who has alter user privileges and would like him to change users who belong to his group. That is, when the user changes the password for a user, the trigger fires and inserts info into my_table. In case this user tries to change another user's password, the trigger should fire again telling him 'cannot alter the user.'

Published: 14 Aug 2006

I need to create a trigger which tracks user password changes into a table my_table. I have a database user who has alter user privileges and would like him to change users who belong to his group. That is, when the user changes the password for a user, the trigger fires and inserts info into my_table. In case this user tries to change another user's password, the trigger should fire again telling him 'cannot alter the user.'

I'm enclosing the trigger code I wrote:

 create or replace trigger LOGG_TRAIL
  before alter on database
  when (ora_dict_obj_type = 'USER' and 
ora_dict_obj_name != user
        and sys_context('USERENV','ISDBA') = 'FALSE' ); 
declare
  by_user  varchar2(30);
  to_user  varchar2(30);
  vprofile varchar2(30);
begin
  select to.PROFILE into vprofile
  from DBA_USERS by, DBA_USERS to
  where by.USERNAME = user
  and to.USER_NAME = ora_dict_obj_name
  and by.PROFILE = to.PROFILE;
 
  insert into TRAIL_TEMP (USER_ALTERED, PASSWORD_MODIFIED_BY, 
PASSWORD_MODIFIED_DATE, PROFILE)
  values (ora_dict_obj_name, user, sysdate, vprofile); exception
  when others then
    raise_application_error (-20001,'can''t alter user'); end; /

This gives errors. Can you please check it? Your help will be highly appreciated.

If I had to perform this action, I would take a slightly different route. Each user is assigned a profile and that profile can include a password verification function. There is nothing stopping you from coding your rules in that password verification function. This function can insert rows of data into another table and raise exceptions.

Dig Deeper on Oracle database design and architecture

SearchDataManagement

Trigger to track user password changes in table

Dig Deeper on Oracle database design and architecture

How the Nagios monitoring tool tracks IT environment details

Net User Command Controls User Access Hours

Has the time for wireless enterprise networks arrived?

Tools monitor AWS apps for availability, scalability

SearchDataManagement

Pandemic triggered data security movement to DBaaS

Who belongs on a high-performance data governance team?

Soda launches cloud service to improve data observability

SearchBusinessAnalytics

15 data science tools to consider using in 2021

Insightsoftware acquisition of Izenda targets embedded BI

Data scientist shortage leaves organizations uncertain

SearchSAP

S/4HANA Cloud SaaS ERP: Buying team overview

SAP forms financial services partnership with Dediq

Unpatched applications threaten SAP security

SearchSQLServer

SQL Server database design best practices and tips for DBAs

SQL Server in Azure database choices and what they offer users

Using a LEFT OUTER JOIN vs. RIGHT OUTER JOIN in SQL

TheServerSide.com

Incorporate diversity and inclusion in technology design

Microsoft previews OpenJDK distro to the delight of devs

Supreme Court ruling on Java APIs eases developer worries

SearchDataCenter

Programmable processor technology for next-gen data centers

Data processing units accelerate infrastructure performance

New Intel Ice Lake processors boost performance, security

SearchContentManagement

OpenText releases Cloud Editions content services updates

Adobe courts small businesses with Acrobat Pro package

Know when to use a headless CMS and when it's not worth it

SearchHRSoftware

Face mask detection a newcomer to employee surveillance

20 diversity and inclusion tools to power your DEI program

DEI tools arrive at critical time for HR