I'd appreciate thoughts from everyone concerning enabling CDOC on two specific databases. Both of these databases are owned by the same login, Logsy. Logsy is a sysadmin. Each database only uses the DBO schema, and Logsy is the dbo for both.
I believe that CDOC would be helpful for scenarios where SomeUser only needs permissions to select from TheView in DB1, but TheView is performing a select statement on a table in DB2.
Since Logsy is already the owner of both of these databases and all of their schemas, is there a significant security risk to be had by enabling CDOC on DB1 and DB2 (not the entire instance)? It seems a lot safer to me, since otherwise I'd need to set up SomeUser (and others) to have access to the underlying tables in DB2, which I do not want to do.
I believe that CDOC is the appropriate choice here, but I'm open to...