版本:MogDB V2.0.1
删除用户时,报错:
postgres=# \dg
List of roles
Role name | Attributes | Member of
-----------+------------------------------------------------------------------------------------------------------------------+-----------
itsm | Create DB, Cannot login | {}
omm | Sysadmin, Create role, Create DB, Replication, Administer audit, Monitoradmin, Operatoradmin, Policyadmin, UseFT | {}
postgres=# drop role itsm;
ERROR: role "itsm" cannot be dropped because some objects depend on it
DETAIL: 1 object in database itsm
检查业务进程,是否存在用户进程,如果有的话,断连进程
postgres=# select datname,usename,state,count(*)
from pg_stat_activity
group by datname,usename,state order by 4 desc;
datname | usename | state | count
----------+---------+--------+-------
postgres | omm | active | 3
postgres | omm | idle | 2
itsm | omm | active | 1
(3 rows)
检查itsm角色的对象
--检查表属主
select relname,relnamespace,relkind from pg_class
where relowner=(select oid from pg_roles where rolname='itsm')
order by 3 desc;
--检查用户的系统权限
SELECT * FROM pg_roles WHERE rolname='itsm';
--检查用户的表权限
select * from information_schema.table_privileges
where grantee='itsm';
--检查用户的usage权限
select * from information_schema.usage_privileges
where grantee='itsm';
--检查用户在存储过程函数的执行权限
select * from information_schema.routine_privileges
where grantee='itsm';
--检查用户在表的列上的权限
select * from information_schema.column_privileges
where grantee='itsm';
--检查用户自定义类型上授予的USAGE权限
select * from information_schema.udt_privileges
where grantee='itsm';
针对删除用户权限后,有时需要重连数据库生效:
postgres=# revoke all on database itsm from itsm;
REVOKE
postgres=# \c itsm
Non-SSL connection (SSL connection is recommended when requiring high-security)
You are now connected to database "itsm" as user "omm".
itsm=# drop user itsm;
DROP ROLE
总结:
-
删除用户首先需要断连所有业务连接
-
如果不清楚对象具体的权限,可以使用“revoke all on [schema]/[database] from rolename;”取消对象上所有权限的赋权
最后修改时间:2022-03-10 12:43:41
「喜欢这篇文章,您的关注和赞赏是给作者最好的鼓励」
关注作者
【版权声明】本文为墨天轮用户原创内容,转载时必须标注文章的来源(墨天轮),文章链接,文章作者等基本信息,否则作者和墨天轮有权追究责任。如果您发现墨天轮中有涉嫌抄袭或者侵权的内容,欢迎发送邮件至:contact@modb.pro进行举报,并提供相关证据,一经查实,墨天轮将立刻删除相关内容。
