用戶的權限來自系統權限和對象權限
一、系統權限
3個索引權限
Grant CREATE ANY INDEX to User_Name;//創建索引 Grant ALTER ANY INDEX to User_Name;//更改索引 Grant DROP ANY INDEX to User_Name;//刪除索引
5個存儲過程權限,
| CREATE PROCEDURE | CREATE ANY PROCEDURE | ALTER ANY PROCEDURE |
| EXECUTE ANY PROCEDURE | DROP ANY PROCEDURE |
4個角色權限
| CREATE ROLE | ALTER ANY ROLE | DROP ANY ROLE | GRANT ANY ROLE |
5個序列權限
| CREATE SEQUENCE | CREATE ANY SEQUENCE | ALTER ANY SEQUENCE |
| SELECT ANY SEQUENCE | DROP ANY SEQUENCE |
登錄數據庫權限
| CREATE SESSION |
表空間權限
| CREATE TABLESPACE | ALTER TABLESPACE | DROP TABLESPACE |
| MANAGE TABLESPACE | UNLIMITED TABLESPACE |
類型權限
| CREATE TYPE | CREATE ANY TYPE | ALTER ANY TYPE |
| DROP ANY TYPE | EXECUTE ANY TYPE | UNDER ANY TYPE |
視圖權限
| CREATE VIEW | CREATE ANY VIEW | DROP ANY VIEW |
| UNDER ANY VIEW | FLASHBACK ANY TABLE | MERGE ANY VIEW |
表權限
| CREATE TABLE | CREATE ANY TABLE | ALTER ANY TABLE |
| BACKUP ANY TABLE | DELETE ANY TABLE | DROP ANY TABLE |
| INSERT ANY TABLE | LOCK ANY TABLE | SELECT ANY TABLE |
| FLASHBACK ANY TABLE | UPDATE ANY TABLE |
觸發器
| CREATE TRIGGER | CREATE ANY TRIGGER | ALTER ANY TRIGGER |
| DROP ANY TRIGGER | ADMINISTER DATABASE TRIGGER |
備份數據庫
| EXP_FULL_DATABASE | IMP_FULL_DATABASE |
二、對象權限
具體表的操作權限:
grant select,delete,insert,update on user1.t_hr to user2; grant all on user1.t_hr to user2;
具體存儲過程執行權限
grant execute on procedure1 to user1
表空間
alter user user1 default tablespace app;
限制修改的列
grant update(wage,bonus) on teachers to user1
收回權限
revoke insert on departments from user1
三、其它方面
角色有哪些權限
select * from role_sys_privs where role='xujin';
用戶有哪些權限
select * from dba_role_privs where grantee=upper('用戶名')
With admin option 用戶sh擁有角色dw_manager的權限;可對角色分配用戶;可刪除角色
GRANT dw_manager TO sh WITH ADMIN OPTION;
With Grant option;指定WITH GRANT OPTION以允許被授予者將對象特權授予其他用戶和角色。
GRANT READ ON DIRECTORY bfile_dir TO hr WITH GRANT OPTION;
系統角色的權限
select * from dba_sys_privs where grantee='角色名稱'