Oracle _ controls user permissions, oracle controls User Permissions

Oracle _ controls user permissions, oracle controls User Permissions
Zookeeper

Oracle _ control User Permissions

① Permission
Database Security:
System Security
Data security
System permissions: Database Permissions
Object permission: permission to operate on database objects

1. System Permissions
More than one hundred valid Permissions
The database administrator has advanced permissions to complete management tasks. For example:
Create a new user
Delete a user
Delete table
Backup table

② Create a user
DBA uses the create user statement to CREATE a USER
Create user user
Identified by password;

1. user's system Permissions
After a user is created, the DBA will grant the user some system permissions.
GRANT privilege [, privilege...]
TO user [, user | role, PUBLIC...];

For example, an application developer has the following system permissions:
CREATE SESSION)
CREATE TABLE)
Create sequence (create sequence)
CREATE VIEW)
Create procedure (creation process)

③ Create a user tablespace
In addition to the create table permission, you also need to allocate the corresponding tablespace to open up the storage space for creating the table.
Alter user atguigu01 (USER) quota unlimited (UNLIMITED)
ON users (tablespace)

④ Create a role and grant permissions
1. Create a role
Create role manager;

2. grant permissions to the role
GRANT create table, create view
TO manager;

3. Assign the role to the user
GRANT manager to dehaan, KOCHHAR;

⑤ Change Password
DBA can create users and change passwords
You can use the alter user statement to change the password.
Alter user scott
Identified by lion;

⑥ Object permissions
Different objects have different object permissions.
The object owner has all permissions.
The owner of an object can assign external permissions.
GRANT object_priv [(columns)]
ON object
TO {user | role | PUBLIC}
[With grant option];

With grant option and PUBLIC keyword
With grant option gives users the same permission assignment.
Assign permissions to all users in the database

7. query permission allocation
Data Dictionary view description
System permissions of the ROLE_SYS_PRIVS role
ROLE_TAB_PRIVS object permissions of the role
USER_ROLE_PRIVS user-owned role
USER_TAB_PRIVS_MADE: Table object permissions assigned by the user
USER_TAB_PRIVS_RECD permission on table objects
USER_COL_PRIVS_MADE object permissions assigned by the user about Columns
USER_COL_PRIVS_RECD user's permission on column objects
USER_SYS_PRIVS user's system Permissions

Revoke revokes object permissions
REVOKE permissions using the REVOKE statement
The permissions assigned by the with grant option clause are also revoked.
REVOKE {privilege [, privilege...] | ALL}
ON object
FROM {user [, user...] | role | PUBLIC}
[Cascade constraints];