Permissions are granted to or revoked from other database users by object owners, database owners, users who were granted permissions with grant option, the system administrator, or a system security officer. These users are specified by user name, group name, or the keyword public.
All users inherit the permissions granted to the roles assigned to them after they have activated those roles.
