Oracle Administrative Rights (i) Basic concepts of Oracle Permissions and Oracle Management permissions Basic

1, the concept of authority

Permissions (privilege) are rights that execute specific types of SQL commands or access other schema objects, including system permissions and object permissions.

2, the Classification of authority

1 system privilege is the right to execute a specific type of SQL command. It is used to control one or a set of database operations that a user can perform.

More than 100 valid permissions (SELECT * from System_privilege_map)

The database administrator has advanced permissions to complete administrative tasks, such as:

– Create a new user

– Delete User

– Delete Table

– Backup Table

Common system permissions:

Create Session Creation Sessions

Create SEQUENCE Creating a sequence

Create synonym creates an object with the same name

CREATE table creating tables in user mode

Create any table creating tables in any mode

drop table deletes tables in user mode

Drop any table deletes tables in any mode

Create PROCEDURE creating a stored procedure

Execute any PROCEDURE a stored procedure that executes any pattern

Create user creating users

Drop User Delete users

Create View creating views

2 object privilege is the right to access other objects, and it has control over the user's access to other schema objects.

Different objects have different object permissions

The owner of the object has all permissions

The owner of the object can assign permissions outside

Object Permission Table View sequence procedure

Modify (Alter) √√

Remove (delete) √√

Execute (Execute) √

Indexes (Index) √

Inserting (insert) √√

Association (references) √√

Select (select) √√√

Updates (update) √√

3. Views on permissions

View function

All_col_privs represents the authorization on the column, and the user and public are the grantee

All_col_privs_made represents the authorization on the column, the user is the owner and the grantee

ALL_COL_RECD represents the authorization on the column, and the user and public are the grantee

All_tab_privs represents the authorization on an object, the user is public or the grantee or the user is the owner

All_tab_privs_made represents the permissions on the object, the user is the owner or the grantee

ALL_TAB_PRIVS_RECD represents the permissions on an object that the user is public or grantee

Dba_col_privs all authorizations on the database column

Dba_role_privs show roles that have been granted to a user or other role

Dba_sys_privs system permissions that have been granted to a user or role

Dba_tab_privs all permissions on a database object

ROLE_ROLE_PRIVS displays the roles that have been granted to the user

ROLE_SYS_PRIVS displays system permissions granted to users through roles

Role_tab_privs Displays object permissions granted to a user through a role

SESSION_PRIVS Displays all system permissions that users now have access to

USER_COL_PRIVS Displays the permissions on the column, the user is the owner, the grantee, or the grantee

User_col_privs_made displays the permissions granted on the column, the user is the owner or the grantee

USER_COL_PRIVS_RECD displays the permissions granted on the column, the user is the owner or the grantee

USER_ROLE_PRIVS displays all roles that have been granted to the user

USER_SYS_PRIVS Displays all system permissions that have been granted to the user

USER_TAB_PRIVS displays all object permissions that have been granted to the user

User_tab_privs_made displays the object permissions that have been granted to other users, the user is the owner

USER_TAB_PRIVS_RECD displays the object permissions that have been granted to other users, who are the grantee

See more highlights of this column: http://www.bianceng.cnhttp://www.bianceng.cn/database/Oracle/