1、创建test10_tbs的表空间,在这个表空间中创建数据库testdb10
CREATE TABLESPACE
omm=# CREATE DATABASE testdb10 WITH TABLESPACE = test10_tbs;
CREATE DATABASE
omm=# \db
List of tablespaces
Name | Owner | Location
------------+-------+-----------------------
pg_default | omm |
pg_global | omm |
test10_tbs | omm | tablespace/test10_tbs
(3 rows)
omm=# \l+
List of databases
Name | Owner | Encoding | Collate | Ctype | Access privileges | Size | Tablespace | Description
-----------+-------+----------+---------+-------+-------------------+-------+------------+-------------------------------------------
omm | omm | UTF8 | C | C | | 12 MB | pg_default |
postgres | omm | UTF8 | C | C | | 12 MB | pg_default | default administrative connection database
template0 | omm | UTF8 | C | C | =c/omm +| 12 MB | pg_default | default template for new databases
| | | | | omm=CTc/omm | | |
template1 | omm | UTF8 | C | C | =c/omm +| 12 MB | pg_default | unmodifiable empty database
| | | | | omm=CTc/omm | | |
testdb10 | omm | UTF8 | C | C | | 12 MB | test10_tbs |
(5 rows)
2、使用create user创建用户user10,登录数据库testdb10,创建测试表t1和t2
NOTICE: The encrypted password contains MD5 ciphertext, which is not secure.
CREATE ROLE
omm=# GRANT ALL ON DATABASE testdb10 TO user10;
GRANT
omm=# \l+
List of databases
Name | Owner | Encoding | Collate | Ctype | Access privileges | Size | Tablespace | Description
-----------+-------+----------+---------+-------+-------------------+-------+------------+-------------------------------------------
-
omm | omm | UTF8 | C | C | | 12 MB | pg_default |
postgres | omm | UTF8 | C | C | | 12 MB | pg_default | default administrative connection database
template0 | omm | UTF8 | C | C | =c/omm +| 12 MB | pg_default | default template for new databases
| | | | | omm=CTc/omm | | |
template1 | omm | UTF8 | C | C | =c/omm +| 12 MB | pg_default | unmodifiable empty database
| | | | | omm=CTc/omm | | |
testdb10 | omm | UTF8 | C | C | =Tc/omm +| 12 MB | test10_tbs |
| | | | | omm=CTc/omm +| | |
| | | | | user10=CTc/omm +| | |
| | | | | user10=APm/omm | | |
(5 rows)
Password for user user10:
gsql ((openGauss 3.0.0 build 02c14696) compiled at 2022-04-01 18:12:00 commit 0 last mr )
Non-SSL connection (SSL connection is recommended when requiring high-security)
Type "help" for help.
testdb10=> create table t1(a int,b varchar(10));
ERROR: permission denied for schema public
DETAIL: N/A
omm@modb:~$ gsql -r
gsql ((openGauss 3.0.0 build 02c14696) compiled at 2022-04-01 18:12:00 commit 0 last mr )
Non-SSL connection (SSL connection is recommended when requiring high-security)
Type "help" for help.
omm=# \c testdb10
Non-SSL connection (SSL connection is recommended when requiring high-security)
You are now connected to database "testdb10" as user "omm".
testdb10=# grant all on schema public to user10;
GRANT
testdb10=# \q
omm@modb:~$ gsql -U user10 -d testdb10 -r
Password for user user10:
gsql ((openGauss 3.0.0 build 02c14696) compiled at 2022-04-01 18:12:00 commit 0 last mr )
Non-SSL connection (SSL connection is recommended when requiring high-security)
Type "help" for help.
testdb10=> create table t1(a int,b varchar(10));
CREATE TABLE
testdb10=> create table t2(a int,b varchar(10));
CREATE TABLE
testdb10=> \d
List of relations
Schema | Name | Type | Owner | Storage
--------+------+-------+--------+----------------------------------
public | t1 | table | user10 | {orientation=row,compression=no}
public | t2 | table | user10 | {orientation=row,compression=no}
(2 rows)
3、使用create role创建角色role10,登录数据库testdb10
NOTICE: The encrypted password contains MD5 ciphertext, which is not secure.
CREATE ROLE
omm=# GRANT ALL ON DATABASE testdb10 TO role10;
GRANT
omm=# \du
List of roles
Role name | Attributes | Membe
r of
-----------+------------------------------------------------------------------------------------------------------------------+------
gaussdb | Sysadmin | {}
omm | Sysadmin, Create role, Create DB, Replication, Administer audit, Monitoradmin, Operatoradmin, Policyadmin, UseFT | {}
role10 | Cannot login | {}
user10 | | {}
omm=# \q
omm@modb:~$ gsql -U role10 -d testdb10 -r
Password for user role10:
gsql: FATAL: role "role10" is not permitted to login
4、将表t1直接删除,将前面创建的表空间和数据库、表t2转给role10,删除用户user10
Password for user user10:
gsql ((openGauss 3.0.0 build 02c14696) compiled at 2022-04-01 18:12:00 commit 0 last mr )
Non-SSL connection (SSL connection is recommended when requiring high-security)
Type "help" for help.
testdb10=>
testdb10=>
testdb10=> drop table t1;
DROP TABLE
testdb10=> \d
List of relations
Schema | Name | Type | Owner | Storage
--------+------+-------+--------+----------------------------------
public | t2 | table | user10 | {orientation=row,compression=no}
(1 row)
testdb10=> \q
omm@modb:~$ gsql -r
gsql ((openGauss 3.0.0 build 02c14696) compiled at 2022-04-01 18:12:00 commit 0 last mr )
Non-SSL connection (SSL connection is recommended when requiring high-security)
Type "help" for help.
omm=# \c testdb10
Non-SSL connection (SSL connection is recommended when requiring high-security)
You are now connected to database "testdb10" as user "omm".
testdb10=# \d
testdb10=# List of relations
Schema | Name | Type | Owner | Storage
--------+------+-------+--------+----------------------------------
public | t2 | table | user10 | {orientation=row,compression=no}
(1 row)
testdb10=# alter database testdb10 owner to role10;
ALTER DATABASE
testdb10=# \db
List of tablespaces
Name | Owner | Location
------------+-------+-----------------------
pg_default | omm |
pg_global | omm |
test10_tbs | omm | tablespace/test10_tbs
(3 rows)
testdb10=# alter tablespace test10_tbs owner to user1;
ERROR: role "user1" does not exist
testdb10=# alter tablespace test10_tbs owner to role10;
ALTER TABLESPACE
testdb10=# REASSIGN OWNED BY user10 to role10;
REASSIGN OWNED
testdb10=# \dt
List of relations
Schema | Name | Type | Owner | Storage
--------+------+-------+--------+----------------------------------
public | t2 | table | role10 | {orientation=row,compression=no}
(1 row)
testdb10=# alter user role10 login;
ALTER ROLE
testdb10=# \q
omm@modb:~$ gsql -U role10 -d testdb10 -r
Password for user role10:
gsql ((openGauss 3.0.0 build 02c14696) compiled at 2022-04-01 18:12:00 commit 0 last mr )
Non-SSL connection (SSL connection is recommended when requiring high-security)
Type "help" for help.
testdb10=> \dt
List of relations
Schema | Name | Type | Owner | Storage
--------+------+-------+--------+----------------------------------
public | t2 | table | role10 | {orientation=row,compression=no}
(1 row)
testdb10=# drop user user10;
DROP ROLE
testdb10=# \du
List of roles
Role name | Attributes | Membe
r of
-----------+------------------------------------------------------------------------------------------------------------------+------
gaussdb | Sysadmin | {}
omm | Sysadmin, Create role, Create DB, Replication, Administer audit, Monitoradmin, Operatoradmin, Policyadmin, UseFT | {}
role10 |
5、最后删除role10
ERROR: role "role10" cannot be dropped because some objects depend on it
DETAIL: owner of table t2
owner of tablespace test10_tbs
owner of database testdb10
testdb10=#
「喜欢这篇文章,您的关注和赞赏是给作者最好的鼓励」
关注作者
【版权声明】本文为墨天轮用户原创内容,转载时必须标注文章的来源(墨天轮),文章链接,文章作者等基本信息,否则作者和墨天轮有权追究责任。如果您发现墨天轮中有涉嫌抄袭或者侵权的内容,欢迎发送邮件至:contact@modb.pro进行举报,并提供相关证据,一经查实,墨天轮将立刻删除相关内容。
