I have a user 'X' that I am granting access to certain roles. But when I test the user x to see what kind of access they have, looks like its restricted to only those tables that I am granting access via role, but they also have access via dblinks to all the other tables.
We use public dblinks across our databases and I am wondering if there is a way to restrict them to what they can get to just via the role in the current database and not via dblink.
The script that I am using to create the user is:
CREATE USER X
IDENTIFIED BY <password>
DEFAULT TABLESPACE xxxx
TEMPORARY TABLESPACE yyyy
PROFILE DEFAULT
ACCOUNT UNLOCK;
GRANT CONNECT TO X;
GRANT ROLEA TO X;
GRANT ROLEB TO X;
ALTER USER X DEFAULT ROLE ALL;