- News & Events
- Inside VoltDB
Featured Download
VoltDB Enterprise Edition
Run Your VoltDB Application In Production
- Community
- DownloadsVersions, libraries & downloads
- DocumentationGet in the know
- Learning ResourcesTechnologies, functions & media
- Source CodeHighlights from the front line
- Volt LabsGit going with code for example apps
- Volt UniversityTraining that will help you change the world
- ForumWe're there for you, friend
- BlogPick our brain
- Dig Deeper
- What is VoltDB?The brightest minds, the fastest apps
- TechnologyWhite papers, app briefs, and other fun stuff
- No Limits
Featured Download
VoltDB Enterprise Edition
Run Your VoltDB Application In Production- No Limits with VoltDBDiscover the possibilities
- VoltDB Application GalleryVoltDB Customer Artwork
- Infinite PossibilitiesBig ideas powered by VoltDB
- VoltBuilderWe're here to help you build big
- The Tao of VoltDB
Featured Download
VoltDB Enterprise Edition
Run Your VoltDB Application In Production- The 5 Principles of VoltDBMore data, faster, in real time
- The VoltDB TechnosphereDesign principles for NewSQL
- Products and SolutionsEnterprise or Community license
- Technical SupportWe're here to help no matter what
- Key FeaturesYou name it, we've got it
- Download VoltDBWhat will you build?
Documentation
CREATE ROLE
CREATE ROLE — Defines a role and the permissions associated with that role.
Synopsis
CREATE ROLE role-name [WITH permission [,...]]
Description
The CREATE ROLE statement defines a named role that can be used to assign access rights to specific procedures and functions. When security is enabled in the deployment file, the permissions assigned in the CREATE ROLE and CREATE PROCEDURE statements specify which users can access which functions.
Use the CREATE PROCEDURE statement to assign permissions to named roles for accessing specific stored procedures. The CREATE ROLE statement lets you assign certain generic permissions. The permissions that can be assigned by the WITH clause are:
- ADHOC
Allows access to ad hoc queries (through the @AdHoc system procedure and sqlcmd command)
- DEFAULTPROC
Allows access to the default procedures for all tables
- EXPORT
Allows access to the export connector for export clients
- SYSPROC
Allows access to all system procedures
The generic permissions are denied by default. So you must explicitly enable them for those roles that need them. For example, if users assigned to the "interactive" role need to run ad hoc queries, you must explicitly assign that permission in the CREATE ROLE statement:
CREATE ROLE interactive WITH adhoc;
Also note that the permissions are additive. So if a user is assigned to one role that allows access to adhoc but not sysproc, but that user also is assigned to another role that allows sysproc, the user has both permissions.
+1 978-528-4660 | Contact | Feedback | Help | Privacy Statement | Contributor License Agreement | Software License Agreement | Trademarks | ©2013 by VoltDB - DownloadsVersions, libraries & downloads
