Privileges Available

From InterBase
Jump to: navigation, search

Go Up to Overview of SQL Access Privileges


The following table lists the SQL access privileges that can be granted and revoked:

SQL access privileges
Privilege Access

ALL

Select, insert, update, delete data, and reference a primary key from a foreign key.

SELECT

Read data.

INSERT

Write new data.

UPDATE

Modify existing data.

DELETE

Delete data.

ENCRYPT ON ENCRYPTION

Enables the database owner or individual table owner to use a specific encryption key to encrypt a database or column. Only the SYSDSO (Data Security Owner) can grant encrypt permission. For information about the InterBase encryption feature, which enables encryption at the database and column levels, and about the privileges needed to grant and revoke encrypt and decrypt permissions, see Encrypting Your Data.

DECRYPT

After encrypting a column, the database owner or the individual table owner can grant decrypt permission to users who need to access the values in an encrypted column. For information about the InterBase encryption feature, which enables encryption at the database and column levels, and about the privileges needed to grant and revoke encrypt and decrypt permissions, see Encrypting Your Data.

REFERENCES

Reference a primary key with a foreign key.

EXECUTE

Execute or call a stored procedure.

role

All privileges assigned to the role.

The ALL keyword provides a mechanism for assigning SELECT, DELETE, INSERT, UPDATE, and REFERENCES privileges using a single keyword. ALL does not grant a role or the EXECUTE privilege. SELECT, DELETE, INSERT, UPDATE, and REFERENCES privileges can also be granted or revoked ­singly or in combination.

Note: Statements that grant or revoke either the EXECUTE privilege or a role cannot grant or revoke other privileges.

Advance To: