Redacting Multiple Columns

3.14 Redacting Multiple Columns

You can redact more than one column in a Data Redaction policy.

3.14.1 Adding Columns to a Data Redaction Policy for a Single Table or View

You can redact columns of different data types, using different redaction types and named policy expressions, for one table or view.

Connect to the PDB as a user who has the EXECUTE privilege on the DBMS_REDACT PL/SQL package and the ADMINISTER REDACTION POLICY system or schema privilege.
Create the policy for the first column that you want to redact by using DBMS_REDACT.ADD_POLICY.
Use the DBMS_REDACT.ALTER_POLICY procedure to add the next column to the policy.
As necessary, set the action, column_name, function_type, and function_parameters (or the parameters that begin with regexp_) parameters to define the redaction for the new column, but do not change the object_schema, object_name, policy_name, or expression parameters. These parameters remain unchanged for newly redacted columns.
Create named policy expressions and apply them to the redacted column.
If a named policy expression is not applied to the column, the default policy expression from DBMS_REDACT.ADD_POLICY will apply.

Related Topics

Creating and Managing Multiple Named Policy Expressions

3.14.2 Example: Redacting Multiple Columns

The DBMS_REDACT.ALTER_POLICY procedure can redact multiple columns.

Example 3-12 shows how to add a column to an existing Data Redaction policy. In this example, the action parameter specifies that a new column must be added, using DBMS_REDACT.ADD_COLUMN. The name of the new column, card_num, is set by the column_name parameter.

Example 3-12 Adding a Column to a Data Redaction Policy

BEGIN
 DBMS_REDACT.ALTER_POLICY(
  object_schema       => 'mavis', 
  object_name         => 'cust_info', 
  policy_name         => 'redact_cust_user_ids', 
  action              => DBMS_REDACT.ADD_COLUMN,
  column_name         => 'card_num',
  function_type       => DBMS_REDACT.FULL);
END;
/