Privileges Available
Go Up to Overview of SQL Access Privileges
The following table lists the SQL access privileges that can be granted and revoked:
Privilege | Access |
---|---|
|
Select, insert, update, delete data, and reference a primary key from a foreign key. |
|
Read data. |
|
Write new data. |
|
Modify existing data. |
|
Delete data. |
ENCRYPT ON ENCRYPTION |
Enables the database owner or individual table owner to use a specific encryption key to encrypt a database or column. Only the SYSDSO (Data Security Owner) can grant encrypt permission. For information about the InterBase encryption feature, which enables encryption at the database and column levels, and about the privileges needed to grant and revoke encrypt and decrypt permissions, see Encrypting Your Data. |
DECRYPT |
After encrypting a column, the database owner or the individual table owner can grant decrypt permission to users who need to access the values in an encrypted column. For information about the InterBase encryption feature, which enables encryption at the database and column levels, and about the privileges needed to grant and revoke encrypt and decrypt permissions, see Encrypting Your Data. |
|
Reference a primary key with a foreign key. |
|
Execute or call a stored procedure. |
role |
All privileges assigned to the role. |
The ALL
keyword provides a mechanism for assigning SELECT
, DELETE
, INSERT
, UPDATE
, and REFERENCES
privileges using a single keyword. ALL
does not grant a role or the EXECUTE
privilege. SELECT
, DELETE
, INSERT
, UPDATE
, and REFERENCES
privileges can also be granted or revoked singly or in combination.
Statements that grant or revoke either the
EXECUTE
privilege or a role cannot grant or revoke other privileges.