Hi All, I have a scenario where a user can execute stored procedures but not able to modify structure or data. I am aware that If the user has the permission to execute the stored procedure - that's all he needs to execute that procedure - no matter what that procedure does. If a login has Db_datareader / Public / Execute / View definition permissions on a database and no other permissions explicitly granted, will he be able to update the data or modify the table manually or through stored procedure? Is there a way we can prevent data changes through stored procedures? Thanks.
Under Database->Security, you can configure your rights of SP (Stored Procedure) i.e., in the managements studio's Object explorer, [Database] -> Security -> [YourRole] -> Rightclick for properties -> Securables section