1.查看
select * from user_sys_privs;--查看当前用户所有权限
select * from user_tab_privs;--查看所用用户对表的权限
select * from user_sys_privs;--查看当前用户所有权限
select * from user_tab_privs;--查看所用用户对表的权限
1.查看所有用户:
select * from dba_users;
select * from all_users;
select * from user_users;
2.查看用户或角色系统权限(直接赋值给用户或角色的系统权限):
select * from dba_sys_privs;
select * from user_sys_privs;
3.查看角色(只能查看登陆用户拥有的角色)所包含的权限
sql>select * from role_sys_privs;
4.查看用户对象权限:
select * from dba_tab_privs;
select * from all_tab_privs;
select * from user_tab_privs;
5.查看所有角色:
select * from dba_roles;
6.查看用户或角色所拥有的角色:
select * from dba_role_privs;
select * from user_role_privs;
7.查看哪些用户有sysdba或sysoper系统权限(查询时需要相应权限)
select * from V$PWFILE_USERS
比如我要查看用户 wzsb的拥有的权限:
SQL> select * from dba_sys_privs where grantee='WZSB';
GRANTEE PRIVILEGE ADMIN_OPTION
------------------------------ ---------------------------------------- ------------
WZSB CREATE TRIGGER NO
WZSB UNLIMITED TABLESPACE NO
比如我要查看用户 wzsb的拥有的角色:
SQL> select * from dba_role_privs where grantee='WZSB';
GRANTEE GRANTED_ROLE ADMIN_OPTION DEFAULT_ROLE
------------------------------ ------------------------------ ------------ ------------
WZSB DBA NO YES
查看一个用户所有的权限及角色
select privilege from dba_sys_privs where grantee='WZSB'
union
select privilege from dba_sys_privs where grantee in
(select granted_role from dba_role_privs where grantee='WZSB' );
2.管理
--删除用户及及用户下的所有数据
drop user xxx cascade;
--创建用户赋予密码
create user xxx identified by 1234;
--赋予权限
grant dba to xxx;
--删除权限
revoke dba from xxx;
--赋予用户登录数据库的权限
grant create session to xxx;
--授予用户操作表的权限
grant unlimited tablespace to xxx;
grant create tablespace to xxx;
grant alter tablespace to xxx;
grant drop tablespace to xxx;
grant manage tablespace to xxx;
--撤销用户操作表空间的权限
revoke unlimited tablespace from xxx;
revoke create tablespace from xxx;
revoke alter tablespace from xxx;
revoke drop tablespace from xxx;
revoke manage tablespace from xxx;
grant create session to zhangsan;--授予zhangsan用户创建session的权限,即登陆权限
grant unlimited session to zhangsan;--授予zhangsan用户使用表空间的权限
grant create table to zhangsan;--授予创建表的权限
grant drop table to zhangsan;--授予删除表的权限
grant insert table to zhangsan;--插入表的权限
grant update table to zhangsan;--修改表的权限
grant select on tablename to zhangsan;--授予zhangsan用户查看指定表的权限
grant drop on tablename to zhangsan--授予删除表的权限
grant insert on tablename to zhangsan;--授予插入的权限
grant update on tablename to zhangsan;--授予修改表的权限