This list describes the object-level privileges in SQL Anywhere. You can view the roles and privileges that a user has in Sybase Central by clicking them and viewing the details that are displayed. You can also retrieve the details by using the sp_has_role system procedure. See Viewing the roles and privileges for a user or role (Sybase Central) and Viewing the roles and privileges for a user or role (SQL).
| Privilege name | Supported by database objects | Inherited through group membership? | WITH GRANT OPTION allowed when granting? | Description |
|---|---|---|---|---|
| ALL | Tables, views | Yes | Yes |
Allows a user to perform all tasks associated with the database object. This privilege grants the following privileges on tables: ALTER, DELETE, INSERT, REFERENCES, SELECT, and UPDATE. This privilege grants the following privileges on views: DELETE, INSERT, SELECT, and UPDATE. Granting ALL also grants LOAD and TRUNCATE privileges. |
| ALTER | Tables | Yes | Yes | Allows a user to alter the structure of a table or create a trigger on the table. Because this privilege grants the user the privilege to modify the database schema, it should not be granted to most users. |
| CONNECT | Databases | No | No | Allows a user to connect to the current database. |
| CONSOLIDATE | Users | No | No | Allows a user to identify a consolidated database in SQL Remote. |
| CREATE ON | Dbspaces | Yes | Yes |
Allows a user to create on the dbspace. The additional privileges required depend on the object that is being created. For example, to create a table, one of CREATE TABLE, CREATE ANY TABLE, or CREATE ANT OBJECT is required. |
| DELETE | Tables, views | No | Yes |
Allows a user to delete rows from the table or view. |
| EXECUTE | Triggers, procedures, user-defined functions | No | No |
Allows a user to execute the procedure or user-defined function. |
| INSERT | Tables, views | Yes | Yes |
Allows a user to insert rows into the table or view. |
| INTEGRATED LOGIN | Databases | No | No |
Allows a user to connect to the current database using an integrated login. |
| KERBEROS LOGIN | Databases | No | No |
Allows a user to connect to the current database using a Kerberos login. |
| LOAD | Tables | Yes | Yes |
Allows a user to load the table if the -gl database option is set to anything other than NONE. |
| PUBLISH | Users | No | No |
Identifies the user ID for a database in SQL Remote. |
| REFERENCES | Tables | Yes | Yes |
Allows a user to create indexes on the table and to create foreign keys that reference the table. This privilege can also be granted on individual columns in a table. Because this privilege allows the user to modify the database schema, it should not be granted to most users. When the column names are specified, the user is only allowed to index those columns in the table. |
| REMOTE | Users | No | No |
Allows a user to identify a remote database in SQL Remote and MobiLink. |
| SELECT | Tables, views | Yes | Yes |
Allows a user to query the table or a view. This privilege can also be granted to individual columns in a table. When the column names are specified, the user is only allowed to view those columns in the table. |
| TRUNCATE | Tables, materialized views | Yes | Yes |
Allows a user to truncate the table or materialized view. |
| UPDATE | Tables, views | Yes | Yes |
Allows a user to update rows in the table or view. This privilege can also be granted to individual columns in a table. |
| USAGE | Sequence generators | No | Yes |
Allows a user to evaluate the current or next value in the sequence. |
Additional notes See also |
Discuss this page in DocCommentXchange.
|
Copyright © 2014, SAP AG or an SAP affiliate company. - SAP Sybase SQL Anywhere 16.0 |