A Java-based tool that generates definitions for server- and database-level objects in Adaptive Server. Adaptive Server version 11.9.2 and later supports ddlgen.
You must have either an sa_role or sso_role to generate DDL for:
Encryption keys
Logins
Roles
For all other objects, users do not need any specific permissions or roles to generate DDL.
The command-line version of ddlgen is located in $SYBASE/ASEP/bin for UNIX, and %SYBASE%\ASEP\bin for Windows.
ddlgen -Ulogin -Ppassword -S[[ssl:]server | host_name : port_number] [-I interfaces_file] [-Tobject_type] [-Nobject_name] [-Ddbname] [-Xextended_object_type] [-Ooutput_file] [-Eerror_file] [-Lprogress_log_file] [-Jclient_charset] [-LC -N logical_cluster_name -F[ % | SGM | GRP | USR | R | D | UDD | U | V | P | XP | I | RI | KC | TR | PC ]
Or
ddlgen -v
specifies a login name, and is case-sensitive.
specifies your password.
If you do not include the -P parameter in your ddlgen statement, ddlgen prompts you to specify a password.
For instructions on how to hide passwords, see “Hiding passwords in ddlgen”.
specifies the name of the Adaptive Server. ddlgen looks this name up in the interfaces file or LDAP configuration file. If you specify:
[ssl:] – allows you to generate DDL for objects in SSL-enabled servers. This parameter is optional.
-S [host_name:port_number] – ddlgen uses the host_name and port_number provided, and neither interfaces nor LDAP configuration files are read or parsed.
-S[server] -I – ddlgen parses the interfaces file specified at the user location for the server name (see the -I parameter description for more information).
-S[server] – without specifying an interfaces file, ddlgen does the following:
ddlgen first tries to read the LDAP configuration file from the standard location
If the LDAP file does not exist, or exists but does not contain an Adaptive Server entry, then the interfaces file is parsed at its standard location for the server name
If the LDAP file exists, then ddlgen uses it to search the server name. The interfaces file is not parsed, and the LDAP configuration file is parsed.
You must use the -S option
because ddlgen does
not connect to a default server.
specifies the interfaces file name, and corresponds to $SYBASE/interfaces for UNIX, and %SYBASE%\ini\sql.ini for Windows. Use this optional parameter with -S.
specifies the type of object you are creating. If you do not use -T, ddlgen generates DDL for the default database of login. The object types for -T are:
Object type |
Description |
|---|---|
C |
cache |
D |
default |
DB |
database |
DBD |
database device |
DPD |
dump device |
EC |
execution class |
EG |
engine group |
EK |
encrypted keys For more information on encrypted keys, see “Using ddlgen for encrypted columns” |
GRP |
group |
I |
index |
KC |
key constraints |
L |
login |
LK |
logical key |
P |
stored procedure |
R |
rule |
RI |
referential integrity |
RO |
role |
RS |
remote server |
SGM |
segment |
TR |
trigger |
U |
table |
UDD |
user-defined datatype |
USR |
user |
V |
view |
WS |
user-defined Web service |
WSC |
Web service consumer |
XOD |
Local caches |
XOU |
Global caches |
XP |
extended stored procedure |
specifies the fully qualified name of the object you are creating, such as -Ndb_name.owner_name.table_name.object_name. The -N option:
Is required if you specify any object_type other than DB (database) in the -T parameter.
Accepts wildcards with the use of %.
Generates DDL for a trigger for a table, using the -Ndb_name.table_owner.table_name.trigger_name format.
To generate all triggers for a table, substitute trigger_name with % using the -Ndb_name.table_owner.table_name.% format.
Generates DDL for an encrypted key with -Ndb_name.owner.key_name.
Generates DDL for all items of a specific object type on your server.
Enforces strict order in which it parses the names in the -Ndb_name.owner_name.table_name.object_name format. If you only provide three arguments, ddlgen assumes they are owner_name, table_name, and object_name, in that order. Alternatively, you can also use -Nowner_name.table_name -Ddb_name. ddlgen does not impose this restriction if object_name is an index (I).
specifies the name of the database for the object you specify in the -N option. The default is the user’s default database.
You cannot use the -D parameter when generating DDL for all triggers of a table.
differentiates the following:
User tables (OU) from proxy tables (OD) when you specify a table as your object type (-TU)
Temporary databases (OD) from normal databases (OU) or archive databases (OA) when you specify database as your object type (-TDB)
SQLJ procedures (OD) from stored procedures (OU) when you specify procedure as your object type (-TP).
If object_type (-T) is U (table) and -X is not specified, ddlgen generates DDL for both user tables and proxy tables. To generate DDL only for:
user tables – use the OU extended object type with the -X option.
proxy tables – use the OD extended object type with the -X option.
in-memory databases, caches, and devices – use the OI extended object type with the -X option.
in-memory temporary databases – use the OIT extended object type with the -X option.
ddlgen does
not support schema generation for system tables.
specifies an output file for the generated DDL. If you do not specify -O, the DDL you create appears in a console window.
specifies a log file for recording errors. If you do not specify -E, the generated errors appear in a console window.
specifies a log file for recording the progress of ddlgen. If you do not specify -L, the progress is not recorded.
specifies the character set to use on the client. -Jclient_charset requests that Adaptive Server convert to and from client_charset, the character set used on the client. A filter converts input between client_charset and the Adaptive Server character set.
Omitting -J sets the character set to a default for the platform. The default may not necessarily be the character set that the client is using.
For HP platforms – you must use -Jiso_1 to
specify the correct character set.
generate DDL for one or all logical clusters on a server.
filters out indexes, triggers, and constraints out of table and database definitions in the DDL of table- and database-level objects. The valid filters are:
For tables – [ % | I | RI | KC | TR | PC ]
For databases – [ % | SGM | GRP | USR | R | D | UDD | U | V | P | XP | I | RI | KC | TR]
The filter options are:
Option |
Filters out |
|---|---|
% |
Everything, and retrieves the schema-only definition of a database or table. |
SGM |
Segments |
GRP |
Groups |
USR |
Users |
R |
Rules |
D |
Defaults |
UDD |
Uer-defined datatypes |
U |
User tables |
V |
Views |
P |
Stored procedures |
PC |
Partition condition |
XP |
Extended stored procedures |
I |
Indexes |
RI |
Referential integrity constraints |
KC |
Primary- and unique-key constraints |
TR |
Triggers |
If you use an invalid filter parameter, ddlgen generates a warning, ignores that parameter, and continues with the rest of the valid parameters you specify.
If you specify % along with other filter parameters, ddlgen ignores all other filterable parameters, and only shows schema-only definitions. ddlgen then continues to evaluate the dependencies within the subset of the applied as the filterable parameters for the database.
displays the version and copyright message of ddlgen and returns to the operating system.
Caches – Generates DDL for a cache called default data cache on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TC -N"default data cache"
To generate DDL for all caches:
ddlgen -Ulogin -Ppassword -Sserver:port -TC -N%
Defaults – Generates DDL for a default called “phondflt” owned by jones in the pubs2 database on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TD -Njones.phonedflt -Dpubs2
Alternatively, because ddlgen allows you to use a fully qualified name in the -N flag, you can omit the -Ddbname and include the database name in the -N option:
ddlgen -Ulogin -Ppassword -Sserver:port -TD -Ndbname.owner.defaultname
To generate DDL for all defaults in a database owned by “owner”:
ddlgen -Ulogin -Ppassword -Sserver:port -TD -Nowner.% -Ddbname
Databases – Generates DDL for a database called pubs2 on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TDB -Npubs2
If you do not specify a dbname, ddlgen generates DDL for the default database of login:
ddlgen -Ulogin -Ppassword -Sserver:port
If you do not use the -T parameter, ddlgen generates DDL for a default-type database:
ddlgen -Ulogin -Ppassword -Sserver:port -Ndbname
To generate DDL for all databases:
ddlgen -Ulogin -Ppassword -Sserver:port -TDB -N%
Database device – Generates DDL for a database device called master running on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TDBD -Nmaster
To generate DDL for all database devices:
ddlgen -Ulogin -Ppassword -Sserver:port -TDBD -N%
Temporary databases – Generates DDL for all databases, including tempdb:
ddlgen -Ulogin -Ppassword -Sserver:port -TDB -N%
To generate DDL for all temporary databases, use the OD extended database type:
ddlgen -Ulogin -Ppassword -Sserver:port -TDB -XOD -N%
Although you can use the OD extended type in Adaptive Server versions 12.5.0.3 and later, versions earlier than 12.5.0.3 issue warning messages. You can safely ignore this message; ddlgen continues processing the command.
To generate DDL for all databases except temporary databases, use the OU extended type:
ddlgen -Ulogin -Ppassword -Sserver:port -TDB -XOU -N%
The following generates DDL for a temporary database named tempdb1:
ddlgen -Ulogin -Ppassword -Sserver:port -TDB -Ntempdb1
The output includes the following:
A create temporary database statement
create temporary database tempdb1 on master = 4, asdas = 2 go
An sp_tempdb bind statement where the isql application is bound to tempdb1:
sp_tempdb 'bind','ap', 'isql', 'DB', 'tempdb1' go
DDL for objects such as
views, stored procedures, and tables is not generated along with DDL for a temporary database because
these objects are temporary, and are re-created when the
server restarts.
When you use the -F parameter to filter a table while generating DDL for a database object, then indexes, referential integrity, key constraints and triggers automatically get filtered, as they are a subset of the table object.
In-memory databases – generates DDL for an in-memory database:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TDB -Nimdb_1
Generates DDL for an in-memory temporary database:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TDB -Nimdb_temp1
Dump device – generates DDL for a dump device called tapedump1 running on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TDPD -Ntapedump1
To generate DDL for all dump devices:
ddlgen -Ulogin -Ppassword -Sserver:port -TDPD -N%
Encrypted keys – generates system encryption passwords along with DDLs for encryption keys when you include the extended option -XOD. The output generates the sp_encryption statement followed by DDL statements for all encrypted keys. This generates DDL for the login “george” on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TEK -Ngeorge -XOD
To generate DDL for all the encrypted keys in the authors database on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TEK -Nauthors.dbo.%
Generates DDL for all encryption keys in the accounts database on a machine named “HARBOR” using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TEK -Naccounts.dbo.%
Alternatively, you use the -D option to specify the database name.
Generate DDL for an encryption key “ssn_key” in a the SampleKeysDB database:
ddlgen -Usa -P -Sserver -TEK -NSampleKeysDB.dbo.ssn_key
This example uses -FEKC to avoid creating DDL for key copies when generating DDL for the “ssn_key” encryption key:
ddlgen -Usa -P -Sserver -TEK -NSampleKeysDB.dbo.ssn_key -FEKC
Generates DDL for “ssn_key” and its key copies:
ddlgen -Usa -P -Sserver -TEK -NSampleKeysDB.dbo.ssn_key
This example issues a ddlgen command on a table called employee, which has an “ssn” column that is encrypted with encryption key “ssn_key,” and a decrypt default value that is set to 100:
ddlgen -Usa -P -Sserver -TU -N db1.dbo.employee
Engine groups – generates DDL for an engine group called LASTONLINE running on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TEG -NLASTONLINE
To generate DDL for all engine groups:
ddlgen -Ulogin -Ppassword -Sserver:port -TEG -N%
Execution class – generates DDL for an execution class called EC2 running on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TEC -NEC2
To generate DDL for all execution classes:
ddlgen -Ulogin -Ppassword -Sserver:port -TEC -N%
Extended stored procedures – generates DDL for the xp_cmdshell extended stored procedure in the pubs2 database, owned by Jones and running on a machine named HARBOR using port 1955, by using the fully qualified dbname.owner.extendedstoredprocedure format with the -N option:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TXP -Npubs2.jones.xp_cmdshell
Alternatively, you can use the -D option instead of using the fully qualified name:
ddlgen -Ulogin -Ppassword -Sserver:port -TXP -Nowner.extendedstoredprocedure -Ddbname
To generate DDL for all extended stored procedures:
ddlgen -Ulogin -Ppassword -Sserver:port -TXP -Ndbname.owner.%
Filters – Generates DDL for the authors table in the pubs2 database, filtering for all indexes (I), and referential integrity constraints (RI), primary and unique key constraints (KC), triggers (TR), and partition condition (PC) from the DDL of a table:
ddlgen -Uroy -Proy123 -TU -Nauthors -Dpubs2 -F%
Alternatively, you can specify each of the filters individually:
ddlgen -Ulogin -Ppassword -TU -Ndbname.owner.table -FI,RI,KC,TR
The following generates the definition of table_name while filtering out foreign keys and primary-unique keys:
ddlgen -Ulogin -Ppassword -TU -Ntable_name -Ddbname -FRI,KC
Both of these generate foreign keys for a specified user in the entire database:
ddlgen -Ulogin -Ppassword -TRI -N%.%.% -Ddbname
Or:
ddlgen -Ulogin -Ppassword -TRI -Ndbname%.%.%
Both of these generate DDL for the primary and unique keys of all the tables in a database that begin with “PK”:
ddlgen -Ulogin -Ppassword -TKC -Ndbname.%.%.PK%
Or:
ddlgen -Ulogin -Ppassword -TKC -N%.%.PK% -Ddbname
The following generates schema-only definition of a database:
ddlgen -Ulogin -Ppassword -Sserver:port -TF -Ndbname -F%
Alternatively, you can specify each of the filters individually:
ddlgen -Ulogin -Ppassword -Sserver:port -TDB -Ndbname -FSGM,GRP,USR,R,D,UDD,V,P,XP,I,RI,KC,TR
The following generates the database DDL skipping the compiled object:
ddlgen -Ulogin -Ppassword -Sserver:port -TDB -Ndbname -FTR,D,XP,V,R
The following generates database definition without a table definition:
ddlgen -Ulogin -Ppassword -Sserver:port -TDB -Ndbname -FU
Groups – Generates DDL for a group called “public” in the pubs2 database, running on a machine named HARBOR using port 1955, by using the fully qualified dbname.groupname format in the -N option:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TGRP -Npubs2.public
Alternatively, you can use the -D option to specify the dbname:
ddlgen -Ulogin -Ppassword -Sserver:port -TGRP -Ngroupname -Ddbname
To generate DDL for all groups:
ddlgen -Ulogin -Ppassword -Sserver:port -TGRP -Ndbname.%
Indexes – Generates DDL for an index called au_lname for the table authors owned by dbo, in the pubs2 database:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TI -Ndbo.authors.au_lname -Dpubs2
Alternatively, because ddlgen allows you to use a fully qualified name in the -N flag, you can omit the -Ddbname and include the database name in the -N option:
ddlgen -Ulogin -Ppassword -Sserver:port -TI -Ndbname.owner.tablename.indexname
If you use a fully qualified name, you may omit the -D option.
To generate DDL for all indexes for a single table:
ddlgen -Ulogin -Ppassword -Sserver:port -TI -Ndbname.owner.tablename.%
To generate DDL for all indexes of all tables in a database:
ddlgen -Ulogin -Ppassword -Sserver:port -TI -Ndbname.%.%.%
For example, this generates DDL for all indexes for all tables in the pubs2 database:
ddlgen -Usa -P -SHARBOR:1955 -TI -Npubs2.%.%.%
Keys – Both of these generate DDL for the primary and unique keys of all the tables in a database that begin with “PK”:
ddlgen -Usa -P -TKC -Ndbname.%.%.PK%
Or:
ddlgen -Usa -P -TKC -N%.%.PK% -Ddbname
Logical keys – LK generates logical keys of table defined by sp_primarykey, sp_commonkey, sp_foreignkey statements. Since these keys do not have a name, the name of the object in this case would be the name of the table. This example generate a DDL for logical keys of table authors in database pubs2 running on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TLK -Npubs2.dbo.authors
To generate DDL for all logical keys in database pub2 use:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TLK -Npubs2.%.%
To filter out logical keys definition from DDL of table authors use LK in -F argument, use:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TLK -Npubs2.dbo.authors -FLK
Logins – TL generates DDL for one or all logins. This example generates DDL for all logins on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TL -N%
The password in the DDL generated
for all logins is “password”.
Alternatively, you can specify an individual login by using -Nusername instead of -N%:
ddlgen -Ulogin -Ppassword -Sserver:port -TL -Nusername
If server-wide password complexity options have been specified for the login or logins, all sp_addlogin and sp_loglogin DDL statements are generated first, followed by DDL statements for the password options. This example generates DDL for the login “george” on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TL -Ngeorge
Remote Servers – Generates DDL for a remote server called ORANGE on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TRS -NORANGE
To generate DDL for all remote servers:
ddlgen -Ulogin -Ppassword -Sserver:port -TRS -N%
Roles – Generates DDL for the sa_role on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TRO -Nsa_role
To generate DDL for all roles:
ddlgen -Ulogin -Ppassword -Sserver:port -TRO -N%
The password in the DDL generated
for all roles is “password”.
Rules – Generates DDL for all rules associated with authors on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TR -Nauthors.dbo.%
The % symbol tells ddlgen to create DDLs for all rules that exist on the server.
You can also give the fully qualified name of the rule:
ddlgen -Ulogin -Ppassword -Sserver:port -TR -Ndbname.owner.rulename
Alternatively, you can also use the -D parameter:
ddlgen -Ulogin -Ppassword -Sserver:port -TR -Nowner.rulename -Ddbname
Segments – Generates DDL using the fully qualified dbname.segmentname format in the -N option for a segment called logsegment for the pubs2 database, on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TSGM -Npubs2.logsegment
Alternatively, you can use specify the dbname using the -D option:
ddlgen -Ulogin -Ppassword -Sserver:port -TSGM -Nsegmentname -Ddbname
To generate DDL for all segments:
ddlgen -Ulogin -Ppassword -Sserver:port -TSGM -Ndbname.%
SQLJ functions – Generates DDL for a SQLJ function named region_of owned by dbo in database master:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TF –Nmaster.dbo.region_of
Alternatively you can also use the -D parameter:
ddlgen -Ulogin -Ppassword -Sserver:port -TF –Ndbo.region_of –Dmaster
To generate DDL for all SQLJ functions in a database, use object type F:
ddlgen -Ulogin -Ppassword -Sserver:port -TF –Ndbname.owner.%
SQLJ procedures – Are a kind of stored procedure. You generate DDL for SQL procedures along with DDL for stored procedures. The following generates DDL for all stored procedures—including SQLJ procedures—owned by dbo in the master database:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TP –Nmaster.dbo.%
To generate DDL for all SQLJ procedures that are only owned by dbo in the master database, use the following, where the extended type OD refers to SQLJ procedures:
ddlgen -Ulogin -Ppassword-Sserver:port -TP –Nmaster.dbo.% -XOD
To generate DDL for all procedures except SQLJ procedures owned by dbo in the master database, use the following, where the extended type OU refers to all stored procedures except SQLJ procedures:
ddlgen -Ulogin -Ppassword-Sserver:port -TP –Nmaster.dbo.% -XOU
Stored procedures – Generates DDL for the sp_monitor stored procedure for the pubs2 database on a machine named HARBOR using port 1955, using the fully qualified dbname.owner.procedure_name format for the -N option:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TP -Npubs2.dbo.sp_monitor
Alternatively, you can use specify the dbname using the -D option:
ddlgen -Ulogin -Ppassword -Sserver:port -TP -Nowner.procedurename -Ddbname
To generate DDL for all stored procedures:
ddlgen -Ulogin -Ppassword -Sserver:port -TP -Ndbname.owner.%
SSL-enabled servers – Generates DDL for objects in the pubs2 database for an SSL-enabled Adaptive Server running on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -Sssl:HARBOR:1955 -TDB -Npubs2
Tables – Generates DDL for all user tables in the pubs2 database owned by “dbo” and running on a machine named HARBOR using port 1955:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TU -Ndbo.% -Dpubs2
You can also use the -N parameter to give the fully qualified name of the table:
ddlgen -Ulogin -Ppassword -Sserver:port -TU -Ndbname.tableowner.tablename
Alternatively, you can also use the -D parameter to specify the database:
ddlgen -Ulogin -Ppassword -Sserver:port -TU -Ntableowner.tablename -Ddbname
To generate DDL for all proxy tables, which uses the value OD, use -XOD instead, where X is the extended type, and OD denotes proxy tables:
ddlgen -Ulogin -Ppassword -Sserver:port -TU -Ntableowner.% -Ddbname -XOD
To generate DDL for all user tables, which uses the value OU, use -XOU instead, where X is the extended type, and OU denotes user tables:
ddlgen -Ulogin -Ppassword -Sserver:port -TU -Ntableowner.% -Ddbname -XOU
To generate DDL for all tables, including user tables and proxy tables:
ddlgen -Ulogin -Ppassword -Sserver:port -TU -Ndbname.tableowner.%
Triggers – Generates DDL for the trigger checksum for the pubs2 database on a machine named HARBOR using port 1955, using the fully qualified dbname.owner.trigger_name format for the -N option:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TTR -Npubs2.dbo.checksum
Alternatively, you can use specify the database_name using the -D option:
ddlgen -Ulogin -Ppassword -Sserver:port -TTR -Nowner.triggername -Ddbname
You can also generate DDL for a trigger for a table, using:
-Ndb_name.table_owner.table_name.trigger_name
To generate DDL for all triggers of a database:
ddlgen -Ulogin -Ppassword -Sserver:port -TTR -Ndbname.owner.%
You can also use the following format to generate DDL for all triggers of a table:
-Ndb_name.table_owner.table_name.%
You cannot use the -D parameter when
generating DDL for all triggers of a table.
User-defined datatypes – Generates DDL for the user-defined datatype “Identype” for the pubs2 database on a machine named HARBOR using port 1955 using the fully qualified dbname.userdefined_datatype format for the -N option:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TUDD -Npubs2.Identype
Alternatively, you can use the -D option to specify the dbname:
ddlgen -Ulogin -Ppassword -Sserver:port -TUDD -Nuserdefined_datatype -Ddbname
To generate DDL for all user-defined datatypes:
ddlgen -Ulogin -Ppassword -Sserver:port -TUDD -Nbname.%
Views – Generates DDL for a view named retail owned by Miller in the pubs2 database running on a machine named HARBOR using port 1955, by using the fully qualified dbname.owner.viewname format with the -N option:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TV -Npubs2.miller.retail
Alternatively, you can use the -D option instead of using the fully qualified name:
ddlgen -Ulogin -Ppassword -Sserver:port -TV -Nowner.viewname -Ddbname
To generate DDL for all views:
ddlgen -Ulogin -Ppassword -Sserver:port -TV -Ndbname.owner.%
Users – Generates DDL for a user named Smith in the pubs2 database running on a machine named HARBOR using port 1955, by using a fully qualified dbname.username format with the -N option:
ddlgen -Uroy -Proy123 -SHARBOR:1955 -TUSR -Npubs2.smith
Alternatively, you can use both the -N and -D options instead of using a fully qualified name in -N:
ddlgen -Ulogin -Ppassword -Shost_name:port -TUSR -Nusername -Ddbname
To generate DDL for all users:
ddlgen -Ulogin -Ppassword -Sserver:port -TUSR -Ndbname.%
Logical cluster – generates DDL for “my_lcluster” on server “ase1”, enter:
ddlgen -Usa -P -Sase1 -TLC -Nmy_lcluster
Logical cluster – generates DDL for all logical clusters on server “ase1”, enter:
ddlgen -Usa -P -Sase1 -TLC -N%
User-defined Web services – Generates DDL for a named user-defined Web service, sp_who_service, in the pubs2 database running on a machine named HARBOR using port 1995, by using a fully qualified dbname.username.webservice_name format with the -N and -T options:
ddlgen -Uroy -Proy123 -SHARBOR:1995 -TWS -Npubs2.dbo.sp_who_service
The syntax for generating DDL for a named user-defined Web service is as follows:
ddlgen -Ulogin -Ppassword -Shost_name:port -TWS -Ndbname.owner.webservice_name
To generate DDL for all user-defined Web services owned by all users in database dbname:
ddlgen -Ulogin -Ppassword -Shost_name:port -TWS -Ndbname.%.%
An sp_webservices 'addalias' statement
is only generated if the DDL is to
be generated for all user-defined web services or for a database.
ddlgen does not identify existing sequences within views, stored procedures or triggers. For this reason, when generating DDL for a database, you must first run ddlgen on those views, stored procedures and triggers that are independent, before running ddlgen on those with dependencies. For example, if view B depends on view A, you must first run ddlgen on view A, before running it on view B.
The default information for ddlgen is:
Option |
Parameter |
Required |
Default |
|---|---|---|---|
-U |
username |
Yes |
None |
-P |
password |
Yes |
None |
-S |
host_name:port_number |
Yes |
None |
-T |
object_type See the -T parameter description for a list of valid object types |
No |
Database |
-N |
object_name |
Yes, if object_type for -T is not DB (database) |
Default database name of username, if -Tobject_type is db or if -T is not specified |
-D |
database_name |
No |
Default database of username |
-X |
extended_object_type Options are:
|
No; use only when the object_type for -T is:
|
None |
-O |
output_file_name |
No |
Standard out |
-E |
error_file_name |
No |
Standard out |
-L |
log_file_name |
No |
None |
-V |
version_number of ddlgen |
No |
None |
At the command line, invoke ddlgen using the ddlgen shell script file (ddlgen.bat for Windows), included in your Adaptive Server installation. The main class in DDLGen.jar is com.sybase.ddlgen.DDLGenerator.
To start ddlgen in the Sybase Central plug-in for Adaptive Server:
Right-click on the object for which you want to generate DDL.
Select Generate DDL.
In the output DDL of create table, bind statements are generated as independent DLL instead of dependent DLL.
The following section provides more details about:
When you issue the ddlgen utility in a Unix command-line environment, other users on that Unix machine can see your ddlgen command—including its password—if they issue the ps process management command, which shows the status of processes that are running on that machine.
ddlgen -P password parameter option lets you to invoke ddlgen from a script so that the password is hidden from other users.
To achieve this, include the string “pwd” in the -P parameter. This acts as a pseudo password, while you supply the actual password in the next line of the script:
ddlgen -Ulogin -Ppwd -Sserver:port -Ttype -Nname << END $PSWD END
The actual ddlgen password string is hidden in the $PSWD environment variable.
If you prefer to keep your password in a file, replace $PSWD with 'cat filename', where filename is the location of your password file. For example:
ddlgen -Ulogin -Ppwd -Sserver:port -Ttype -Nname << END 'cat filename' END
The ddlgen utility supports pre-15.0.2 encryption. Pre-15.0.2 ddlgen support includes generating DDL for an encryption key in a database, and generating DDL to synchronize encryption keys across servers.
If you use ddlgen to generate DDL for encryption keys on Adaptive Server version 15.0.2 or later, the DDL may cause errors on a pre-15.0.2 version Adaptive Server, specifically if an encryption key is encrypted by a user specified-password or has key copies.
The type EK, used for encryption key, generates the DDL to create an encryption key and to grant permissions on it. ddlgen generates encrypted column information and a grant decrypt statement, along with the table definition.
If you do not specify the -XOD option, and the key to be migrated has been created in the source database using the with passwd clause, ddlgen generates a create encryption key command with password as its explicit password.This is similar to what ddlgen does for roles and login passwords.
The -XOD generates the create encryption key that specifies the key’s encrypted value as represented in sysencryptkeys. Use the -XOD to synchronize encryption keys across servers for data movement.
ddlgen -XOD generates DDL that includes a system encryption password (if it was set and DDL is generated for a key encrypted with a system encryption password) and DDL for keys.
Generating DDL without specifying the -XOD
flag
Two things can happen if users do not specify the -XOD flag in ddlgen:
If users did not specify a password when the encryption key was created, ddlgen generates DDL with no password.
If users specified a password when the encryption key was first created, ddlgen generates the default password of ‘password’. This is similar to what ddlgen does for roles and login passwords, and its output looks similar to the following:
----------------------------------------------------------------------- -- DDL for EncryptedKey 'ssn_key' ----------------------------------------------------------------------- print 'ssn_key' --The DDL is generated with a default password – 'password' as --a password was specified when this key was created. create encryption key SampleKeysDB.dbo.ssn_key for AES with keylength 128 passwd 'password' init_vector random go
Generating DDL with the -XOD flag
When a user specifies “-XOD” in the ddlgen command, ddlgen generates DDL that includes a system encryption password (if it has been set and DDL is generated for a key encrypted with a system encryption password) and DDL for keys.
The following syntax generates a system encryption password:
ddlgen -Usa -P -Sserver -TEK -NsampleKeysdb.dbo.ek1 -XOD
The output for the command is:
-- System Encryption Password use SampleKeysDB go sp_encryption 'system_encr_passwd', '0x8e050e3bb607225c60c7cb9f59124e99866ca22e677b2cdc9a4d09775850f4721', NULL, 2, 0 go -------------------------------------------------------------------------- -- DDL for EncryptedKey 'ek1' -------------------------------------------------------------------------- print '<<<<< CREATING EncryptedKey - "ek1" >>>>>' go create encryption key SampleKeysDB.dbo.ek1 for AES with keylength 128 passwd 0x0000C7BC28C3020AC21401 init_vector NULL keyvalue 0xCE74DB1E028FF15D908CD066D380AB4AD3AA88284D6F7742DFFCADCAABE4100D01 keystatus 32 go
When migrating keys from a source to a target server
using ddlgen, set the system encryption password
to NULL (if it exists) in the target server if you want to run the ddlgen output
(from the source server) for encryption keys generated using “-XOD” parameter.
Failure to do this results in errors when you try to execute the ddlgen output
against the target server.
The ddlgen utility also generates DDL for key copies along with the DDL for base key. For example, the following syntax would generate DDL for “ssn_key” and its key copies:
ddlgen -Usa -P -Sserver -TEK -NSampleKeysDB.dbo.ssn_key
The output from ddlgen would look like:
----------------------------------------------------------------------------- -- DDL for EncryptedKey 'ssn_key' ----------------------------------------------------------------------------- print 'ssn_key' --The DDL is generated with a default password – 'password' as --a password was specified when this key was created. create encryption key SampleKeysDB.dbo.ssn_key for AES with keylength 128 passwd 'password' init_vector random go print 'Key Copies for ssn_key' -- Generating DDL for Key Copies for 'ssn_key' alter encryption key 'ssn_key' with passwd 'password' add encryption with passwd 'passwd' for user 'dbo'.
If you include the -XOD flag, the DDL for key copy would look like:
alter encryption key SampleKeysDB.dbo.ssn_key add encryption with keyvalue 0x84A7360AA0B28801D6D4CBF2F8219F634EE641E1082F221A2C58C9BBEC9F49B501 passwd 0x000062DF4B8DA5709E5E01 keystatus 257 for user 'user1' go
With Adaptive Server 15.0.2, ddlgen supports the EKC (encryption key copy) extended type for its -F filter argument, to suppress the generation of key copies for encryption keys.
This example uses -FEKC to avoid creating DDL for key copies when generating DDL for the “ssn_key” encryption key:
ddlgen -Usa -P -Sserver -TEK -NSampleKeysDB.dbo.ssn_key -FEKC
The output from ddlgen would look like:
----------------------------------------------------------------------------- -- DDL for EncryptedKey 'ssn_key' ----------------------------------------------------------------------------- print 'ssn_key' --The DDL is generated with a default password – 'password' as --a password was specified when this key was created. create encryption key SampleKeysDB.dbo.ssn_key for AES with keylength 128 passwd 'password' init_vector random go
ddlgen can generate decrypt_default statements (if set for an encrypted column) along with DDL of a table.
The following example issues a ddlgen command on a table called employee which has an “ssn” column that is encrypted with encryption key “ssn_key,” and a decrypt default value that is set to “100”:
ddlgen -Usa -P -Sserver -TU -Nemployee
The DDL output from the command is:
create table employee ( ssn int not null encrypt with ssn_key decrypt_default 100 , last_name int not null , first_name int not null ) lock allpages on 'default' go
Users must have either sa_role or sso_role to generate DDL for:
Encryption keys
Logins
Roles
For all other objects, users do not need any specific permissions or roles to generate DDL.
