Doc Map

Setting User Permissions

  • To grant permissions for an object to a user, see GRANT.

    When permissions for a table or view in a schema are granted to a user or role, the USAGE permission of the schema must be granted together. Otherwise, the user or role can only see these objects but cannot access them.

    In the following example, permissions for the schema tpcds are first granted to user joe, and then the SELECT permission for the tpcds.web_returns table is also granted.

    postgres=# GRANT USAGE ON SCHEMA tpcds TO joe;
postgres=# GRANT SELECT ON TABLE tpcds.web_returns to joe;

  • Grant a role to a user to allow the user to inherit the object permissions of the role.

    1. Create a role.

      Create a role lily and grant the system permission CREATEDB to the role.

      CREATE ROLE lily WITH CREATEDB PASSWORD "xxxxxxxx";

    2. Grant object permissions to the role by using GRANT.

      For example, first grant permissions for the schema tpcds to the role lily, and then grant the SELECT permission of the tpcds.web_returns table to lily.

      postgres=# GRANT USAGE ON SCHEMA tpcds TO lily;
postgres=# GRANT SELECT ON TABLE tpcds.web_returns to lily;

    3. Grant the role permissions to a user.

      GRANT lily to joe;

      NOTE:
      When the permissions of a role are granted to a user, the attributes of the role are not transferred together.

  • To revoke user permissions, use REVOKE.

Feedback
编组 3备份

您对 openGauss文档 的整体满意度如何?

0
0-不满意10-非常满意

0/500

感谢您的反馈,如需帮助可联系common@public.opengauss.org

问题反馈

common@public.opengauss.org

    openGauss 2025-10-31 07:42:18
    cancel