1.SQL驱动管理用户权限
创建用户
:)create user test identified by ‘123456’;
授予用户只读权限
:)GRANT SELECT ON *. * TO test
授予用户读取和设置权限,允许DDL
:)GRANT SELECT, INSERT, DROP, ALTER, CREATE, TRUNCATE, OPTIMIZE, KILL QUERY, MOVE PARTITION BETWEEN SHARDS, SYSTEM, dictGet, INTROSPECTION, SOURCES ON *.* TO test
授予用户读取和设置权限,但不允许DDL
:)GRANT SELECT, INSERT, OPTIMIZE, KILL QUERY, MOVE PARTITION BETWEEN SHARDS, SYSTEM, dictGet, INTROSPECTION, SOURCES ON *.* TO test
2.配置文件里边更改(vi /etc/clickhouse-server/users.xml)
readonly:读权限、写权限和设置权限均由此标签控制,它
有三种取值。
·<readonly>0</readonly>当取值为0时,不进行任何限制(默认值)。
·<readonly>1</readonly>当取值为1时,只拥有读权限(只能执行SELECT、EXISTS、SHOW
和DESCRIBE)。
·<readonly>2</readonly>当取值为2时,拥有读权限和设置权限(在读权限基础上,增加
了SET查询)。
<allow_ddl>0</allow_ddl>
allow_ddl = 0,不允许ddl查询
<allow_ddl>1</allow_ddl>
allow_ddl =1,允许ddl查询