The user's permissions come from system permissions and object permissions
First, System permissions
3 Index Permissions
Grant Create any index to user_name;//Create indexes grant ALTER any index to user_name;//change Indexes grant DROP any index to use r_name;//Deleting an index
5 Stored Procedure permissions,
CREATE PROCEDURE |
CREATE any PROCEDURE |
ALTER any PROCEDURE |
EXECUTE any PROCEDURE |
DROP any PROCEDURE |
|
4 Role Permissions
CREATE ROLE |
ALTER any ROLE |
DROP any ROLE |
GRANT any ROLE |
5 Sequence Permissions
CREATE SEQUENCE |
CREATE any SEQUENCE |
ALTER any SEQUENCE |
SELECT any SEQUENCE |
DROP any SEQUENCE |
|
Logon database permissions
Table Space Permissions
CREATE tablespace |
ALTER tablespace |
DROP tablespace |
MANAGE tablespace |
UNLIMITED tablespace |
|
Type permissions
CREATE TYPE |
CREATE any TYPE |
ALTER any TYPE |
DROP any TYPE |
EXECUTE any TYPE |
Under Any TYPE |
View Permissions
CREATE VIEW |
CREATE any VIEW |
DROP any VIEW |
Under Any VIEW |
FLASHBACK any TABLE |
MERGE any VIEW |
Table Permissions
CREATE TABLE |
CREATE any TABLE |
ALTER any TABLE |
BACKUP any TABLE |
DELETE any TABLE |
DROP any TABLE |
INSERT any TABLE |
LOCK any TABLE |
SELECT any TABLE |
FLASHBACK any TABLE |
UPDATE any TABLE |
|
Trigger
CREATE TRIGGER |
CREATE any TRIGGER |
ALTER any TRIGGER |
DROP any TRIGGER |
Administer DATABASE TRIGGER |
|
Backing Up the database
Exp_full_database |
Imp_full_database |
Second, object permissions
Operation permissions for specific tables:
Grant Select,delete,insert,update on to User2; Grant All on to User2;
Specific stored procedure execution permissions
Grant Execute on to User1
Table Space
Alter User default tablespace app;
Restrict modified columns
Grant Update on to User1
Revoke permissions
Revoke Insert on from User1
Third, other aspects
What permissions the role has
Select * from where role='xujin';
What permissions the user has
Select * from where grantee=Upper(' user name ')
With admin option user sh has the permissions of the role Dw_manager; You can assign users to roles; remove roles
GRANT Dw_manager to SH with OPTION ;
With GRANT option; Specify with GRANT option to allow the grantor to grant object privileges to other users and roles.
GRANT READ on to HR with GRANT OPTION;
Permissions for system roles
Select * from where grantee=' role name '
Oracle User Rights Grant