Authorization, or access control, is concerned with the enforcement of the privileges defined among users, groups, roles, services, and so on. In most cases, authorization is enforced internally by the provider. The consumer only gets return codes from method invocations, which determine whether the call was successful or a permission violation occurred. OLE DB, defines the return code DB_SEC_E_PERMISSIONDENIED and status codes such as DBSTATUS_E_PERMISSIONDENIED and DBROWSTATUS_E_ PERMISSIONDENIED for this purpose.
Future Direction
Future versions of OLE DB will take advantage of a set of security interfaces defined by Distributed COM to control the security of RPC calls between proxies and stubs, the launching of objects, and the impersonation of clients by servers.