oracle有三个默认的用户
sys change_on_install [as sysdba]
system manager
scott tiger
创建用户
create user lisi identified by lisi;
系统权限
grant create session to lisi;
grant create table to lisi;
grant unlimited tablespace to lisi;
revoke create session from lisi;
revoke create table from lisi;
revoke unlimited tablespace from lisi;
grant create session to public;
查询当前用户系统权限
select * from user_sys-privs;
对象权限
grant select on mytab to lisi;
grant all on mytab to lisi;
revoke select mytab to lisi;
revoke all on mytab to lisi;
查看当前用户的对象权限
select * from user_tab_privs;
对象权限可以控制到列
grant update(name) on mytab to lisi;
grant insert(id) on mytab to lisi;
查看当前用户的控制到列的权限
select * from user_col_privs;
注意:查询和删除不能控制到列
//ddl dml dcl
权限的传递
grant alter any table to lisi with admin option;
grant select on A to lisi with grant option;
角色
create role myrole;
grant create session to myrole;
drop role myrole;
注意:有些系统权限无法直接赋予角色
create table create any table
[alter table] alter any table;
[drop table] drop any table;
表属于同一个用户的角色不属于某一个用户
数据库的三种验证机制
操作系统验证
密码文件验证
数据库验证
linux下的启动过程
lsnrctl start
//sqlplus sys/oracle as sysdba
sqlplus /nolog
conn sys/oracle as sysdba
startup
windows下的启动过程
lsnrctl start
oradim -startup -sid orcl
sys change_on_install [as sysdba]
system manager
scott tiger
创建用户
create user lisi identified by lisi;
系统权限
grant create session to lisi;
grant create table to lisi;
grant unlimited tablespace to lisi;
revoke create session from lisi;
revoke create table from lisi;
revoke unlimited tablespace from lisi;
grant create session to public;
查询当前用户系统权限
select * from user_sys-privs;
对象权限
grant select on mytab to lisi;
grant all on mytab to lisi;
revoke select mytab to lisi;
revoke all on mytab to lisi;
查看当前用户的对象权限
select * from user_tab_privs;
对象权限可以控制到列
grant update(name) on mytab to lisi;
grant insert(id) on mytab to lisi;
查看当前用户的控制到列的权限
select * from user_col_privs;
注意:查询和删除不能控制到列
//ddl dml dcl
权限的传递
grant alter any table to lisi with admin option;
grant select on A to lisi with grant option;
角色
create role myrole;
grant create session to myrole;
drop role myrole;
注意:有些系统权限无法直接赋予角色
create table create any table
[alter table] alter any table;
[drop table] drop any table;
表属于同一个用户的角色不属于某一个用户
数据库的三种验证机制
操作系统验证
密码文件验证
数据库验证
linux下的启动过程
lsnrctl start
//sqlplus sys/oracle as sysdba
sqlplus /nolog
conn sys/oracle as sysdba
startup
windows下的启动过程
lsnrctl start
oradim -startup -sid orcl