暂无图片
暂无图片
暂无图片
暂无图片
暂无图片

openGauss每日一练第 5 天 | 创建用户、修改用户属性、更改用户权限和删除用户

原创 手机用户2761 2021-12-08
395

0.连接openGauss

su - omm
gsql -r

1.创建用户user1、user2和user3,user1具有CREATEROLE权限,user2具有CREATEDB权限,要求使用两种不同的方法设置密码

CREATE USER user1 CREATEROLE PASSWORD 'abcd@123';
CREATE USER user2 CREATEDB IDENTIFIED BY 'abcd@456';
CREATE USER user3 PASSWORD 'abcd@789';
\du

– 回显

                                                              List of roles
 Role name |                                                    Attributes | Member of
-----------+------------------------------------------------------------------------------------------------------------------ +-----------
 gaussdb   | Sysadmin | {}
 omm       | Sysadmin, Create role, Create DB, Replication, Administer audit, Monitoradmin, Operatoradmin, Policyadmin, UseFT | {}
 user1     | Create role | {}
 user2     | Create DB | {}
 user3     | | {}

2.修改用户user1的密码

ALTER USER user1 IDENTIFIED BY 'ABcd@123' REPLACE 'Abcd@123';

– 回显

NOTICE:  The encrypted password contains MD5 ciphertext, which is not secure.
ALTER ROLE

3.重命名用户user2

ALTER USER user2 rename to user20;

4.将用户user1的权限授权给用户user3,再回收用户user3的权限

GRANT user1 to user3;
\du

– 回显

                                                              List of roles
 Role name |                                                    Attributes | Member of
-----------+--------------------------------------------------------------------------------------+-----------
 gaussdb   | Sysadmin | {}
 omm       | Sysadmin, Create role, Create DB, Replication, Administer audit, Monitoradmin, Operatoradmin, Policyadmin, UseFT | {}
 user1     | Create role | {}
 user20    | Create DB | {}
 user3     | | {user1}
REVOKE user1 from user3;
\du

– 回显

                                                              List of roles
 Role name |                                                    Attributes
| Member of
-----------+--------------------------------------------------+-----------
 gaussdb   | Sysadmin | {}
 omm       | Sysadmin, Create role, Create DB, Replication, Administer audit, Monitoradmin, Operatoradmin, Policyadmin, UseFT | {}
 user1     | Create role | {}
 user20    | Create DB | {}
 user3     | | {}

5.删除所有创建用户

drop user user1;
drop user user20;
drop user user3;
\du
                                                              List of roles
 Role name |                                                    Attributes | Member of
-----------+----------------------------------------------------------------------------------+-----------
 gaussdb   | Sysadmin | {}
 omm       | Sysadmin, Create role, Create DB, Replication, Administer audit, Monitoradmin, Operatoradmin, Policyadmin, UseFT | {}

6.修改去掉用户属性(BONUS)

我想了解如何去掉CREATEDB,CREATEROLE,这类属性, 用REVOKE显然是不对的, 那是对应GRANT.
研究一下发现要在原属性前加NO.

ALTER USER user1 NOCREATEDB;
「喜欢这篇文章,您的关注和赞赏是给作者最好的鼓励」
关注作者
【版权声明】本文为墨天轮用户原创内容,转载时必须标注文章的来源(墨天轮),文章链接,文章作者等基本信息,否则作者和墨天轮有权追究责任。如果您发现墨天轮中有涉嫌抄袭或者侵权的内容,欢迎发送邮件至:contact@modb.pro进行举报,并提供相关证据,一经查实,墨天轮将立刻删除相关内容。

评论