Permission granted:
Grant login permission: grant create sessionto cz;
Grant query permission: grant select onscott.emp to cz;
Grant delete permission: grant delete onscott.emp to cz;
Grant tablespace permissions: grant unlimited tablespace to zx
Use tablespace permissions:
Grant unlimited tablespace to username
Permission recovery:
Revoke select on tablename from username
Permission transfer:
Default permissions cannot be passed
Grant create sessionto username with adminoption
Transitive, and cannot be deleted by cascade
Grant select on table name to username with grantoption
Transitive, can be deleted by cascade
Query all system roles
Select * from dba_roles
Query the permissions under the role
Select * from role_sys_privs where role='role privilege name'
Select * from role_tab_privs where role='role privilege name'
Select * from role_role_privs where role='role privilege name'
--Query system permissions
select * fromdba_sys_privs where grantee='MYROLE'
--Query all object permissions
select * fromdba_tab_privs where grantee='MYROLE'
--A role below the role
select * from role_role_privs whererole = 'MYROLE'
-- find all synonyms
select * fromdba_synonyms where synonym_name='EP'
-- Query all views
select * fromdba_views where view_name='VIEW_EMP'
custom role
Create a custom role: create role role name
Give permissions to roles
grantcreate session to myrole;
give role to role
grant permission name ( role name ) to role name
Role query: select * from dba_roles where role = 'MYROLE'
Role system permission query:
select * from dba_sys_privs where grantee='MYROLE'