github.com/matrixorigin/matrixone@v1.2.0/test/distributed/cases/tenant/privilege/role.result (about) 1 set global enable_privilege_cache = off; 2 create role role_r1,role_r2,role_r3; 3 create user role_u1 identified by '111', role_u2 identified by '111', role_u3 identified by '111'; 4 grant role_r1 to role_u1; 5 grant role_r1,role_r2,role_r3 to role_u1,role_u2,role_u2; 6 grant role_r1 to role_r2; 7 grant role_r2 to role_r3; 8 grant role_r3 to role_r1; 9 cannot grant role role_r3 to role_r1 10 revoke role_r2 from role_r3; 11 revoke role_r1 from role_r2; 12 grant show databases on account * to role_r1; 13 grant show databases on database * to role_r1; 14 internal error: the privilege "show databases" can only be granted to the object type "account" 15 grant show tables on database * to role_r1; 16 grant create database on account * to role_r1; 17 grant create table on database * to role_r1; 18 drop database if exists t; 19 create database t ; 20 use t; 21 create table A (a int); 22 grant select,insert,delete,update on table t.a to role_r1; 23 revoke select,insert,delete,update on table t.a from role_r1; 24 create database d; 25 use d; 26 create table t(a int); 27 grant create account on account * to role_r1; 28 internal error: the privilege create account can not be granted 29 grant drop account on account * to role_r1; 30 internal error: the privilege drop account can not be granted 31 grant alter account on account * to role_r1; 32 internal error: the privilege alter account can not be granted 33 grant create user on account * to role_r1; 34 grant drop user on account * to role_r1; 35 grant alter user on account * to role_r1; 36 grant create role on account * to role_r1; 37 grant drop role on account * to role_r1; 38 grant alter role on account * to role_r1; 39 grant create database on account * to role_r1; 40 grant drop database on account * to role_r1; 41 grant show databases on account * to role_r1; 42 grant connect on account * to role_r1; 43 grant all on account * to role_r1; 44 grant ownership on account * to role_r1; 45 internal error: the object type "account" do not support the privilege "ownership" 46 grant show tables on database * to role_r1; 47 grant show tables on database *.* to role_r1; 48 grant show tables on database d to role_r1; 49 grant create table on database * to role_r1; 50 grant create table on database *.* to role_r1; 51 grant create table on database d to role_r1; 52 grant create view on database * to role_r1; 53 grant create view on database *.* to role_r1; 54 grant create view on database d to role_r1; 55 grant drop table on database * to role_r1; 56 grant drop table on database *.* to role_r1; 57 grant drop table on database d to role_r1; 58 grant drop view on database * to role_r1; 59 grant drop view on database *.* to role_r1; 60 grant drop view on database d to role_r1; 61 grant alter table on database * to role_r1; 62 grant alter table on database *.* to role_r1; 63 grant alter table on database d to role_r1; 64 grant alter view on database * to role_r1; 65 grant alter view on database *.* to role_r1; 66 grant alter view on database d to role_r1; 67 grant all on database * to role_r1; 68 grant all on database *.* to role_r1; 69 grant all on database d to role_r1; 70 grant ownership on database * to role_r1; 71 grant select on table * to role_r1; 72 grant select on table *.* to role_r1; 73 grant select on table d.* to role_r1; 74 grant select on table d.t to role_r1; 75 grant select on table t to role_r1; 76 grant insert on table * to role_r1; 77 grant insert on table *.* to role_r1; 78 grant insert on table d.* to role_r1; 79 grant insert on table d.t to role_r1; 80 grant insert on table t to role_r1; 81 grant update on table * to role_r1; 82 grant update on table *.* to role_r1; 83 grant update on table d.* to role_r1; 84 grant update on table d.t to role_r1; 85 grant update on table t to role_r1; 86 grant delete on table * to role_r1; 87 grant delete on table *.* to role_r1; 88 grant delete on table d.* to role_r1; 89 grant delete on table d.t to role_r1; 90 grant delete on table t to role_r1; 91 grant index on table * to role_r1; 92 grant index on table *.* to role_r1; 93 grant index on table d.* to role_r1; 94 grant index on table d.t to role_r1; 95 grant index on table t to role_r1; 96 grant all on table * to role_r1; 97 grant all on table *.* to role_r1; 98 grant all on table d.* to role_r1; 99 grant all on table d.t to role_r1; 100 grant all on table t to role_r1; 101 grant ownership on table * to role_r1; 102 grant execute on table * to role_r1; 103 grant execute on table *.* to role_r1; 104 grant execute on table d.* to role_r1; 105 grant execute on table d.t to role_r1; 106 grant execute on table t to role_r1; 107 revoke create account on account * from role_r1; 108 revoke drop account on account * from role_r1; 109 revoke alter account on account * from role_r1; 110 revoke create user on account * from role_r1; 111 revoke drop user on account * from role_r1; 112 revoke alter user on account * from role_r1; 113 revoke create role on account * from role_r1; 114 revoke drop role on account * from role_r1; 115 revoke alter role on account * from role_r1; 116 revoke create database on account * from role_r1; 117 revoke drop database on account * from role_r1; 118 revoke show databases on account * from role_r1; 119 revoke connect on account * from role_r1; 120 revoke all on account * from role_r1; 121 revoke show tables on database * from role_r1; 122 revoke show tables on database *.* from role_r1; 123 revoke show tables on database d from role_r1; 124 revoke create table on database * from role_r1; 125 revoke create table on database *.* from role_r1; 126 revoke create table on database d from role_r1; 127 revoke create view on database * from role_r1; 128 revoke create view on database *.* from role_r1; 129 revoke create view on database d from role_r1; 130 revoke drop table on database * from role_r1; 131 revoke drop table on database *.* from role_r1; 132 revoke drop table on database d from role_r1; 133 revoke drop view on database * from role_r1; 134 revoke drop view on database *.* from role_r1; 135 revoke drop view on database d from role_r1; 136 revoke alter table on database * from role_r1; 137 revoke alter table on database *.* from role_r1; 138 revoke alter table on database d from role_r1; 139 revoke alter view on database * from role_r1; 140 revoke alter view on database *.* from role_r1; 141 revoke alter view on database d from role_r1; 142 revoke all on database * from role_r1; 143 revoke all on database *.* from role_r1; 144 revoke all on database d from role_r1; 145 revoke select on table * from role_r1; 146 revoke select on table *.* from role_r1; 147 revoke select on table d.* from role_r1; 148 revoke select on table d.t from role_r1; 149 revoke select on table t from role_r1; 150 revoke insert on table * from role_r1; 151 revoke insert on table *.* from role_r1; 152 revoke insert on table d.* from role_r1; 153 revoke insert on table d.t from role_r1; 154 revoke insert on table t from role_r1; 155 revoke update on table * from role_r1; 156 revoke update on table *.* from role_r1; 157 revoke update on table d.* from role_r1; 158 revoke update on table d.t from role_r1; 159 revoke update on table t from role_r1; 160 revoke delete on table * from role_r1; 161 revoke delete on table *.* from role_r1; 162 revoke delete on table d.* from role_r1; 163 revoke delete on table d.t from role_r1; 164 revoke delete on table t from role_r1; 165 revoke index on table * from role_r1; 166 revoke index on table *.* from role_r1; 167 revoke index on table d.* from role_r1; 168 revoke index on table d.t from role_r1; 169 revoke index on table t from role_r1; 170 revoke all on table * from role_r1; 171 revoke all on table *.* from role_r1; 172 revoke all on table d.* from role_r1; 173 revoke all on table d.t from role_r1; 174 revoke all on table t from role_r1; 175 revoke execute on table * from role_r1; 176 revoke execute on table *.* from role_r1; 177 revoke execute on table d.* from role_r1; 178 revoke execute on table d.t from role_r1; 179 revoke execute on table t from role_r1; 180 drop role role_r1,role_r2,role_r3; 181 drop user role_u1,role_u2,role_u3; 182 drop database if exists t; 183 drop database if exists d; 184 set global enable_privilege_cache = on;