Oracle用户及角色的权限管理[Oracle基础]

本文涉及的产品
视频直播,500GB 1个月
简介:
1.查看全部用户:
  select * from dba_users;
  select * from all_users;
  select * from user_users;
2.查看用户或角色系统权限(直接赋值给用户或角色的系统权限):
  select * from dba_sys_privs;
  select * from user_sys_privs;
3.查看角色(仅仅能查看登陆用户拥有的角色)所包括的权限
sql>select * from role_sys_privs;
4.查看用户对象权限:
  select * from dba_tab_privs;
  select * from all_tab_privs;
  select * from user_tab_privs;
5.查看全部角色:
  select * from dba_roles;
6.查看用户或角色所拥有的角色:
  select * from dba_role_privs;
  select * from user_role_privs;
7.查看哪些用户有sysdba或sysoper系统权限(查询时须要对应权限)
    SQL> select * from dba_role_privs where grantee='CX_ZJ_ROS';                  -------------用户所拥有的角色
  GRANTEE      GRANTED_ROLE   ADM  DEF
  ----------  --------------- ----- ----
  CX_ZJ_ROS ZHRO NO  YES
SQL> SELECT * FROM DBA_SYS_PRIVS WHERE GRANTEE='ZHRO';       --------这里查询的是用户和自己定义角色所拥有的权限                                                                      
GRANTEE   PRIVILEGE      ADM
-------- ------------ -------------------
ZHRO   CREATE SEQUENCE   NO 
ZHRO   CREATE SESSION    NO 
ZHRO    CREATE TABLE     NO 
ZHRO   UNLIMITED TABLESPACE  NO  

 5 rows selected. 

------------这里的UNLIMITED TABLESPACE权限事实上是不能通过角色的方式授予的     

SQL> select * from role_sys_privs where role='CONNECT';    
-------这里查询的是系统角色所拥有的权限
ROLE       PRIVILEGE        ADM
--------- ---------------- ----------
CONNECT    CREATE SESSION   NO
SQL> SELECT * FROM DBA_SYS_PRIVS WHERE GRANTEE='ILOG_RTS';
GRANTEE    PRIVILEGE             ADM
--------- --------------------- -------------
ILOG_RTS   UNLIMITED TABLESPACE  NO
SQL> select * from dba_role_privs where grantee='ILOG_RTS';
GRANTEE    GRANTED_ROLE        ADM DEF
---------- -------------       --- ---
ILOG_RTS   CONNECT              NO  YES
ILOG_RTS    RESOURCE            NO  YES
select * from V$PWFILE_USERS
TABLE_NAME            COMMENTS
-----------------   -------------------------------------
DBA_CONNECT_ROLE_GRANTEES      Information regarding which users are granted CONNECT
DBA_ROLES                      All Roles which exist in the database
DBA_ROLE_PRIVS                 Roles granted to users and roles
DBA_SCHEDULER_JOB_ROLES        All scheduler jobs in the database by database role
USER_ROLE_PRIVS                Roles granted to current user
ROLE_ROLE_PRIVS                Roles which are granted to roles
ROLE_SYS_PRIVS                 System privileges granted to roles
ROLE_TAB_PRIVS                 Table privileges granted to roles
SESSION_ROLES                  Roles which the user currently has enabled.


TABLE_NAME               COMMENTS
-------------------     -------------------------------------
DBA_AQ_AGENT_PRIVS
DBA_COL_PRIVS                  All grants on columns in the database
DBA_ROLE_PRIVS                 Roles granted to users and roles
DBA_RSRC_CONSUMER_GROUP_PRIVS  Switch privileges for consumer groups
DBA_RSRC_MANAGER_SYSTEM_PRIVS  system privileges for the resource manager
DBA_SYS_PRIVS                  System privileges granted to users and roles
DBA_TAB_PRIVS                  All grants on objects in the database
USER_COL_PRIVS                 Grants on columns for which the user is the owner, grantor or grantee
USER_COL_PRIVS_MADE            All grants on columns of objects owned by the user
    USER_COL_PRIVS_RECD            Grants on columns for which the user is the grantee
USER_ROLE_PRIVS                Roles granted to current user
USER_RSRC_CONSUMER_GROUP_PRIVS Switch privileges for consumer groups for the user
USER_RSRC_MANAGER_SYSTEM_PRIVS system privileges for the resource manager for the user
USER_SYS_PRIVS                 System privileges granted to current user
USER_TAB_PRIVS                 Grants on objects for which the user is
                               the owner, grantor or grantee
USER_TAB_PRIVS_MADE            All grants on objects owned by the user
USER_TAB_PRIVS_RECD            Grants on objects for which the user is the grantee
ALL_COL_PRIVS                  Grants on columns for which the user is
                               the grantor, grantee, owner,or an enabled role or PUBLIC is the grantee

ALL_COL_PRIVS_MADE             Grants on columns for which the user is owner or grantor
ALL_COL_PRIVS_RECD             Grants on columns for which the user, PUBLIC or enabled role is the grantee
ALL_TAB_PRIVS                  Grants on objects for which the user is the grantor, grantee, 
                               owner,or an enabled role or PUBLIC is the grantee

ALL_TAB_PRIVS_MADE             User's grants and grants on user's objects
ALL_TAB_PRIVS_RECD             Grants on objects for which the user, PUBLIC or enabled role is the grantee
ROLE_ROLE_PRIVS                Roles which are granted to roles
ROLE_SYS_PRIVS                 System privileges granted to roles
ROLE_TAB_PRIVS                 Table privileges granted to roles
SESSION_PRIVS                  Privileges which the user currently hasset
GV$ENABLEDPRIVS                Synonym for GV_$ENABLEDPRIVS
V$ENABLEDPRIVS                 Synonym for V_$ENABLEDPRIVS

set linesize 120
col username for a20
col ACCOUNT_STATUS for a30
col CREATED for a30
set pagesize 600
col DEFAULT_TABLESPACE for a30
select username,ACCOUNT_STATUS,CREATED,DEFAULT_TABLESPACE from dba_users order by CREATED,ACCOUNT_STATUS;


col GRANTEE for a30
col GRANTED_ROLE for a30
col ADMIN_OPTION for a20
col DEFAULT_ROLE for a20
-------------这里查询的是用户角色所拥有的角色
select * from dba_role_privs where grantee in (select username from dba_users where username not in ('SYS','SYSTEM') AND ACCOUNT_STATUS='OPEN') order by GRANTEE,GRANTED_ROLE;
-------------这里查询的是用户和自己定义角色所拥有的权限

select distinct GRANTEE,PRIVILEGE,ADMIN_OPTION from (SELECT GRANTEE,PRIVILEGE,ADMIN_OPTION FROM DBA_SYS_PRIVS WHERE GRANTEE in (select GRANTED_ROLE from dba_role_privs where grantee in (select username from dba_users where username not in ('SYS','SYSTEM') AND ACCOUNT_STATUS='OPEN')) union SELECT GRANTEE,PRIVILEGE,ADMIN_OPTION FROM DBA_SYS_PRIVS WHERE GRANTEE in (select username from dba_users where username not in ('SYS','SYSTEM') AND ACCOUNT_STATUS='OPEN')) order by GRANTEE,PRIVILEGE;






本文转自mfrbuaa博客园博客,原文链接:http://www.cnblogs.com/mfrbuaa/p/5346894.html,如需转载请自行联系原作者

相关文章
|
4月前
|
存储 Oracle 关系型数据库
[oracle]用户与权限管理
[oracle]用户与权限管理
|
7月前
|
SQL Oracle 关系型数据库
【ORACLE】 事务 | 锁 | 约束 | 权限、角色与用户管理
【ORACLE】 事务 | 锁 | 约束 | 权限、角色与用户管理
83 1
|
数据安全/隐私保护 数据库管理
Oracle-用户、角色以及权限控制
Oracle-用户、角色以及权限控制
42 0
|
SQL Oracle 关系型数据库
9-7 Oracle如何管理权限和角色
9-7 Oracle如何管理权限和角色
306 0
|
存储 SQL Oracle
Oracle 用户、角色管理简介
Oracle 用户、角色管理简介
149 0
|
存储 SQL 缓存
数据库小技能:Oracle基础【上篇】
QPS: 请求进入的速度 并发数: 系统中同时存在的请求数 并发数 = QPS * 耗时
198 0
数据库小技能:Oracle基础【上篇】
|
Oracle 关系型数据库 数据库
oracle基础
oracle基础
107 1
|
Oracle 关系型数据库 Linux
如果oracle用户下的$ORACLE_HOME bin oracle文件的属主或权限出了问题,那么该如何修复呢?
如果oracle用户下的$ORACLE_HOME bin oracle文件的属主或权限出了问题,那么该如何修复呢?
409 1
|
Oracle 关系型数据库 数据库
数据库小技能:Oracle基础之【常用函数】
虚表dual ,它是一行一列,没有任何数据,常常用于测试。
185 0
|
SQL 算法 Oracle
数据库小技能:Oracle基础之【查询】
DQL:(数据查询语言,select)用来完成对数据库中的数据查询。 DDL(数据定义语言,create,drop,truncate截断表)操作表结构。 DML(数据库操作语言,insert,delete,update)操作数据
132 0