今天学习openGauss创建角色、修改角色属性、更改角色权限和删除角色
1.创建角色
–列出所有数据库角色
omm=# \du List of roles Role name | Attributes | Member of -----------+------------------------------------------------------------------------------------- -----------------------------+----------- gaussdb | Sysadmin | {} omm | Sysadmin, Create role, Create DB, Replication, Administer audit, Monitoradmin, Opera toradmin, Policyadmin, UseFT | {}复制
–创建角色manager1,密码test_123
CREATE ROLE manager1 IDENTIFIED BY ‘test_123’;
omm=# CREATE ROLE manager1 IDENTIFIED BY 'test_123'; NOTICE: The encrypted password contains MD5 ciphertext, which is not secure. CREATE ROLE复制
–创建角色manager2,密码test_456,具有LOGIN属性且为系统管理员
CREATE ROLE manager2 LOGIN SYSADMIN IDENTIFIED BY ‘test_456’;
omm=# CREATE ROLE manager2 LOGIN SYSADMIN IDENTIFIED BY 'test_456'; NOTICE: The encrypted password contains MD5 ciphertext, which is not secure. CREATE ROLE复制
–创建角色manager3,密码test_789,从2021年12月10日生效,2021年12月30日失效
CREATE ROLE manager3 WITH LOGIN PASSWORD ‘test_789’ VALID BEGIN ‘2021-12-10’ VALID
UNTIL ‘2021-12-30’;
omm=# CREATE ROLE manager3 WITH LOGIN PASSWORD 'test_789' VALID BEGIN '2021-12-10' VALIDUNTIL '2021-12-30'; NOTICE: The encrypted password contains MD5 ciphertext, which is not secure. CREATE ROLE复制
–再次查看所有数据库角色
\du+ Role name | Attributes | Member of | Description -----------+------------------------------------------------------------------------------------- -----------------------------+-----------+------------- gaussdb | Sysadmin | {} | manager1 | Cannot login | {} | manager2 | Sysadmin | {} | manager3 | Role valid begin 2021-12-10 00:00:00+08 +| {} | | Role valid until 2021-12-30 00:00:00+08 | | omm | Sysadmin, Create role, Create DB, Replication, Administer audit, Monitoradmin, Opera toradmin, Policyadmin, UseFT | {} |复制
2.修改角色属性
–修改角色manage1具有LOGIN属性且为系统管理员
ALTER ROLE manager1 SYSADMIN LOGIN;
ALTER ROLE manager1 SYSADMIN LOGIN; ALTER ROLE复制
–查看manager1
\du+ manager1 List of roles Role name | Attributes | Member of | Description -----------+------------+-----------+------------- manager1 | Sysadmin | {} |复制
–修改角色manager2密码
ALTER ROLE manager2 IDENTIFIED BY ‘abcd@123’ ;
ALTER ROLE manager2 IDENTIFIED BY 'abcd@123' ; NOTICE: The encrypted password contains MD5 ciphertext, which is not secure. ALTER ROLE复制
–重命名manager2
ALTER ROLE manager2 RENAME TO manager20;
ALTER ROLE manager2 RENAME TO manager20; NOTICE: MD5 password cleared because of role rename ALTER ROLE复制
3.授权
–将omm的权限授权给manager1
GRANT omm to manager1 with admin option;
grant omm to manager1 with admin option; GRANT ROLE复制
4.回收权限
revoke all privilege from manager1;
revoke all privilege from manager1; ALTER ROLE复制
5.删除角色
drop role manager1;
drop role manager20;
drop role manager3;
drop role manager1; DROP ROLE drop role manager2; ERROR: role "manager2" does not exist drop role manager20; DROP ROLE drop role manager3; DROP ROLE复制
课后作业
1.创建角色role1为系统管理员, role2指定生效日期, role3具有LOGIN属性
create role role1 sysadmin identified by 'abcd.1234'; NOTICE: The encrypted password contains MD5 ciphertext, which is not secure. CREATE ROLE create role role2 identified by 'abcd.1234' VALID BEGIN '2021-12-11' VALID UNTIL '2021-12-30'; NOTICE: The encrypted password contains MD5 ciphertext, which is not secure. CREATE ROLE create role role3 login identified by 'abcd.1234'; NOTICE: The encrypted password contains MD5 ciphertext, which is not secure. CREATE ROLE复制
2.重命名role1
alter role role1 rename to role10; NOTICE: MD5 password cleared because of role rename ALTER ROLE复制
3.修改role2密码
alter role role2 identified by 'abcd.12345'; NOTICE: The encrypted password contains MD5 ciphertext, which is not secure. ALTER ROLE复制
4.将omm权限授权给role3,再回收role3的权限
grant omm to role3 with admin option; GRANT ROLE revoke all privilege from role3; ALTER ROLE \du List of roles Role name | Attributes | Member of -----------+------------------------------------------------------------------------------------- -----------------------------+----------- gaussdb | Sysadmin | {} omm | Sysadmin, Create role, Create DB, Replication, Administer audit, Monitoradmin, Opera toradmin, Policyadmin, UseFT | {} role10 | Cannot login, Sysadmin +| {} | Role valid begin 2021-12-11 00:00:00+08 +| | Role valid until 2021-12-30 00:00:00+08 | {omm} | {} role2 | Cannot login | role3 |复制
5.删除所有创建角色
drop role role2; DROP ROLE drop role role10; DROP ROLE drop role role3; DROP ROLE \q复制
「喜欢这篇文章,您的关注和赞赏是给作者最好的鼓励」
关注作者
【版权声明】本文为墨天轮用户原创内容,转载时必须标注文章的来源(墨天轮),文章链接,文章作者等基本信息,否则作者和墨天轮有权追究责任。如果您发现墨天轮中有涉嫌抄袭或者侵权的内容,欢迎发送邮件至:contact@modb.pro进行举报,并提供相关证据,一经查实,墨天轮将立刻删除相关内容。
评论
相关阅读
MogDB 发布更新,解决 openGauss 数据库在长事务情况下Ustore表膨胀问题
MogDB
298次阅读
2025-04-17 10:41:41
openGauss荣获中国软件行业协会多奖项,技术升级再创行业新高度
openGauss
258次阅读
2025-04-30 14:30:58
MogDB 发布更新,解决 openGauss 数据库在长事务情况下Ustore表膨胀问题
云和恩墨
196次阅读
2025-04-16 09:52:02
GitCode 成 openGauss 新归宿,国产开源数据库里程碑事件
严少安
155次阅读
2025-04-27 11:37:53
荣誉时刻!openGauss认证证书快递已发,快来看看谁榜上有名!
墨天轮小教习
135次阅读
2025-04-23 17:39:13
单个执行机并行执行MySQL到openGauss数据迁移子任务
Clipnosis
117次阅读
2025-04-30 16:39:58
openGauss6.0.0适配操作系统自带的软件,不依赖三方库
来杯拿铁
87次阅读
2025-04-18 10:49:53
opengauss使用gs_probackup进行增量备份恢复
进击的CJR
81次阅读
2025-04-09 16:11:58
Postgresql数据库单个Page最多存储多少行数据
maozicb
74次阅读
2025-04-23 16:02:19
openGauss新特性 | openGauss-DataVec向量数据库特性介绍
openGauss
45次阅读
2025-04-17 10:41:47
