Table 2. Object Privileges | |
Object Type | Privileges |
Tables, Views, Sequences | SELECT INSERT UPDATE DELETE RULE ALL |
External Tables | SELECT RULE ALL |
Databases | CONNECT CREATE TEMPORARY | TEMP ALL |
Functions | EXECUTE |
Procedural Languages | USAGE |
Schemas | CREATE USAGE ALL |
Custom Protocol | SELECT INSERT UPDATE DELETE RULE ALL |
Note: Privilegesmust be granted for each object individually. For example, granting ALL on a database does not grant fullaccess to the objects within that database. It only grants all of thedatabase-level privileges (CONNECT, CREATE, TEMPORARY) to the database itself.
使用grant语句赋予角色对象权限,使用revoke收回权限
(1)赋予权限
yueworld_db=# grant insert,delete,update,select on table t1 to mch;
GRANT
yueworld_db=#
(2)收回权限
yueworld_db=# revoke insert,delete,update,select on table t1 from mch;
REVOKE
yueworld_db=#