You can grant database privileges directly to users or it can be inherited through role membership.
Privilege Name | Supported By Database Object | Description |
---|---|---|
ALL | Tables, Views, Materialized Views | Allows a user to perform all tasks associated with tables, views and materialized views. |
ALTER | Tables | Allows a user to alter the structure of a table. |
CREATE | Dbspaces | Allows a user to create on the dbspace. The additional privileges required depend on the object that is being created. For example, to create a table, one of CREATE TABLE, CREATE ANY TABLE, or CREATE ANT OBJECT is required. |
DELETE | Tables, View | Allows a user to delete rows from the table or view. |
EXECUTE | Procedure, User-defined Functions | Allows a user to execute the procedure or user-defined function. |
INSERT | Table, Views | Allows a user to insert rows into the table or view. |
LOAD | Tables | Allows a user to load the table if the -gl database option is set to anything other than NONE. |
REFERENCES | Tables | Create indexes on a table, and to create foreign keys that reference a table |
SELECT | Table, Views | Look at information in a table or view |
TRUNCATE | Table, Materialized Views | Allows a user to truncate the table or materialized view. |
UPDATE | Tables, Views | Update rows in a table or view. |
USAGE | Sequence Generators | Allows a user to evaluate the current or next value in the sequence. |
In a multiplex, only write servers can modify table privileges on tables owned by the write server.