pl/sql script for role access update

migration/processes_post_migration/04_role_access_update.sql

@@ -0,0 +1,80 @@
+DECLARE
+   roleaccesslevel      VARCHAR2 (200);
+   roleaccesslevelwin   VARCHAR2 (200);
+   sqlins               VARCHAR2 (2000);
+BEGIN
+   FOR r IN (SELECT   ad_role_id, userlevel, NAME
+                 FROM AD_ROLE
+                WHERE ismanual = 'N'
+             ORDER BY ad_role_id)
+   LOOP
+      DBMS_OUTPUT.PUT_LINE ('Role : ' || r.NAME || ' - ' || r.ad_role_id);
+      DELETE FROM AD_WINDOW_ACCESS
+            WHERE ad_role_id = r.ad_role_id;
+
+      DELETE FROM AD_PROCESS_ACCESS
+            WHERE ad_role_id = r.ad_role_id;
+
+      DELETE FROM AD_FORM_ACCESS
+            WHERE ad_role_id = r.ad_role_id;
+
+      DELETE FROM AD_WORKFLOW_ACCESS
+            WHERE ad_role_id = r.ad_role_id;
+
+      IF r.userlevel = 'S  '                                        -- system
+      THEN
+         roleaccesslevel := '(''4'',''7'',''6'')';
+         roleaccesslevelwin := roleaccesslevel;
+      ELSIF r.userlevel = ' C '                                      -- client
+      THEN
+         roleaccesslevel := '(''7'',''6'',''3'',''2'')';
+         roleaccesslevelwin := roleaccesslevel;
+      ELSIF r.userlevel = ' CO'                                -- client + org
+      THEN
+         roleaccesslevel := '(''7'',''6'',''3'',''2'',''1'')';
+         roleaccesslevelwin := roleaccesslevel;
+      ELSE                                                    -- org or others
+         roleaccesslevel := '(''3'',''1'',''7'')';
+         roleaccesslevelwin :=
+                        roleaccesslevel || ' AND w.Name NOT LIKE ''%(all)%''';
+      END IF;
+
+      sqlins :=
+            'INSERT INTO AD_Window_Access (AD_Window_ID, AD_Role_ID, AD_Client_ID,AD_Org_ID,IsActive,Created,CreatedBy,Updated,UpdatedBy,IsReadWrite) SELECT DISTINCT w.AD_Window_ID, '
+         || r.ad_role_id
+         || ',0,0,''Y'', SysDate,0, SysDate,0,''Y'' FROM AD_Window w INNER JOIN AD_Tab t ON (w.AD_Window_ID=t.AD_Window_ID) INNER JOIN AD_Table tt ON (t.AD_Table_ID=tt.AD_Table_ID) WHERE t.SeqNo=(SELECT MIN(SeqNo) FROM AD_Tab xt WHERE xt.AD_Window_ID=w.AD_Window_ID)AND tt.AccessLevel IN '
+         || roleaccesslevelwin;
+
+      -- DBMS_OUTPUT.PUT_LINE (sqlins);
+      EXECUTE IMMEDIATE sqlins;
+
+      sqlins :=
+            'INSERT INTO AD_Process_Access (AD_Process_ID, AD_Role_ID, AD_Client_ID,AD_Org_ID,IsActive,Created,CreatedBy,Updated,UpdatedBy,IsReadWrite) SELECT DISTINCT p.AD_Process_ID, '
+         || r.ad_role_id
+         || ',0,0,''Y'', SysDate,0, SysDate,0,''Y'' FROM AD_Process p WHERE AccessLevel IN '
+         || roleaccesslevel;
+
+      -- DBMS_OUTPUT.PUT_LINE (sqlins);
+      EXECUTE IMMEDIATE sqlins;
+
+      sqlins :=
+            'INSERT INTO AD_Form_Access (AD_Form_ID, AD_Role_ID, AD_Client_ID,AD_Org_ID,IsActive,Created,CreatedBy,Updated,UpdatedBy,IsReadWrite) SELECT f.AD_Form_ID, '
+         || r.ad_role_id
+         || ',0,0,''Y'', SysDate,0, SysDate,0,''Y'' FROM AD_Form f WHERE AccessLevel IN '
+         || roleaccesslevel;
+
+      -- DBMS_OUTPUT.PUT_LINE (sqlins);
+      EXECUTE IMMEDIATE sqlins;
+
+      sqlins :=
+            'INSERT INTO AD_WorkFlow_Access (AD_WorkFlow_ID, AD_Role_ID, AD_Client_ID,AD_Org_ID,IsActive,Created,CreatedBy,Updated,UpdatedBy,IsReadWrite) SELECT w.AD_WorkFlow_ID, '
+         || r.ad_role_id
+         || ',0,0,''Y'', SysDate,0, SysDate,0,''Y'' FROM AD_WorkFlow w WHERE AccessLevel IN '
+         || roleaccesslevel;
+
+      -- DBMS_OUTPUT.PUT_LINE (sqlins);
+      EXECUTE IMMEDIATE sqlins;
+   END LOOP;
+
+   COMMIT;
+END;