[]
        
(Showing Draft Content)

云数据库账号权限说明

本文介绍为云数据库实例创建创建普通账号时,需要为其授予账号的权限项说明。授权后才能成功连接数据库。

提示:高级权限账号可以直接连接云数据库实例。

MySQL数据库权限项

账号类型

授权

权限项

高级权限账号

-

SELECT

INSERT

UPDATE

DELETE

CREATE

DROP

RELOAD

PROCESS

REFERENCES

INDEX

ALTER

CREATE TEMPORARY TABLES

LOCK TABLES

EXECUTE

REPLICATION SLAVE

REPLICATION CLIENT

CREATE VIEW

SHOW VIEW

CREATE ROUTINE

ALTER ROUTINE

CREATE USER

EVENT

TRIGGER





普通账号

只读

SELECT

LOCK TABLES

SHOW VIEW

PROCESS

REPLICATION SLAVE

REPLICATION CLIENT









读写

SELECT

INSERT

UPDATE

DELETE

CREATE

DROP

REFERENCES

INDEX

ALTER

CREATE TEMPORARY TABLES

LOCK TABLES

EXECUTE

CREATE VIEW

SHOW VIEW

CREATE ROUTINE

ALTER ROUTINE

EVENT

TRIGGER

PROCESS

REPLICATION SLAVE

REPLICATION CLIENT









仅DDL

CREATE

DROP

INDEX

ALTER

CREATE TEMPORARY TABLES

LOCK TABLES

CREATE VIEW

SHOW VIEW

CREATE ROUTINE

ALTER ROUTINE

PROCESS

REPLICATION SLAVE

REPLICATION CLIENT





仅DML

SELECT

INSERT

UPDATE

DELETE

CREATE TEMPORARY TABLES

LOCK TABLES

EXECUTE

SHOW VIEW

EVENT

TRIGGER

SQL Server数据库权限项

账号类型

授权对象

权限类型

角色

权限

账号类型

授权对象

权限类型

角色

权限

  • 高权限账号

  • 普通账号

用户数据库

所有者

  • Server级别角色

    • public

    • processadmin

    • setupadmin

  • Database级别角色

    • public

    • db_owner

  • CONNECT SQL

  • ALTER ANY LOGIN

  • ALTER ANY LINKED SERVER

  • ALTER ANY CONNECTION

  • ALTER TRACE

  • VIEW ANY DATABASE

  • VIEW SERVER STATE

  • ALTER SERVER STATE

  • CREATE TABLE

  • CREATE VIEW

  • CREATE PROCEDURE

  • CREATE FUNCTION

  • CREATE RULE

  • CREATE DEFAULT

  • CREATE TYPE

  • CREATE ASSEMBLY

  • CREATE XML SCHEMA COLLECTION

  • CREATE SCHEMA

  • CREATE SYNONYM

  • CREATE AGGREGATE

  • CREATE ROLE

  • CREATE MESSAGE TYPE

  • CREATE SERVICE

  • CREATE CONTRACT

  • CREATE REMOTE SERVICE BINDING

  • CREATE ROUTE

  • CREATE QUEUE

  • CREATE SYMMETRIC KEY

  • CREATE ASYMMETRIC KEY

  • CREATE FULLTEXT CATALOG

  • CREATE CERTIFICATE

  • CREATE DATABASE DDL EVENT NOTIFICATION

  • CONNECT

  • CONNECT REPLICATION

  • CHECKPOINT

  • SUBSCRIBE QUERY NOTIFICATIONS

  • AUTHENTICATE

  • SHOWPLAN

  • ALTER ANY USER

  • ALTER ANY ROLE

  • ALTER ANY APPLICATION ROLE

  • ALTER ANY COLUMN ENCRYPTION KEY

  • ALTER ANY COLUMN MASTER KEY

  • ALTER ANY SCHEMA

  • ALTER ANY ASSEMBLY

  • ALTER ANY DATABASE SCOPED CONFIGURATION

  • ALTER ANY DATASPACE

  • ALTER ANY EXTERNAL DATA SOURCE

  • ALTER ANY EXTERNAL FILE FORMAT

  • ALTER ANY MESSAGE TYPE

  • ALTER ANY CONTRACT

  • ALTER ANY SERVICE

  • ALTER ANY REMOTE SERVICE BINDING

  • ALTER ANY ROUTE

  • ALTER ANY FULLTEXT CATALOG

  • ALTER ANY SYMMETRIC KEY

  • ALTER ANY ASYMMETRIC KEY

  • ALTER ANY CERTIFICATE

  • ALTER ANY SECURITY POLICY

  • SELECT

  • INSERT

  • UPDATE

  • DELETE

  • REFERENCES

  • EXECUTE

  • ALTER ANY DATABASE DDL TRIGGER

  • ALTER ANY DATABASE EVENT NOTIFICATION

  • ALTER ANY DATABASE AUDIT

  • ALTER ANY DATABASE EVENT SESSION

  • KILL DATABASE CONNECTION

  • VIEW ANY COLUMN ENCRYPTION KEY DEFINITION

  • VIEW ANY COLUMN MASTER KEY DEFINITION

  • VIEW DATABASE STATE

  • VIEW DEFINITION

  • TAKE OWNERSHIP

  • ALTER

  • ALTER ANY MASK

  • UNMASK

  • EXECUTE ANY EXTERNAL SCRIPT

  • CONTROL

只读

  • Server级别角色

    • public

    • processadmin

    • setupadmin

  • Database级别角色

    • public

    • db_datareader

  • CONNECT SQL

  • ALTER ANY LOGIN

  • ALTER ANY LINKED SERVER

  • ALTER ANY CONNECTION

  • ALTER TRACE

  • VIEW ANY DATABASE

  • VIEW SERVER STATE

  • ALTER SERVER STATE

  • CONNECT

  • SHOWPLAN

  • SELECT

  • KILL DATABASE CONNECTION

  • VIEW ANY COLUMN ENCRYPTION KEY DEFINITION

  • VIEW ANY COLUMN MASTER KEY DEFINITION

  • VIEW DATABASE STATE

读写(DML)

  • Server级别角色

    • public

    • processadmin

    • setupadmin

  • Database级别角色

    • public

    • db_datareader

    • db_datawriter

  • CONNECT SQL

  • ALTER ANY LOGIN

  • ALTER ANY LINKED SERVER

  • ALTER ANY CONNECTION

  • ALTER TRACE

  • VIEW ANY DATABASE

  • VIEW SERVER STATE

  • ALTER SERVER STATE

  • CONNECT

  • SHOWPLAN

  • SELECT

  • INSERT

  • UPDATE

  • DELETE

  • KILL DATABASE CONNECTION

  • VIEW ANY COLUMN ENCRYPTION KEY DEFINITION

  • VIEW ANY COLUMN MASTER KEY DEFINITION

  • VIEW DATABASE STATE

超级权限账号

所有数据库

所有权限

  • Server级别角色:sysadmin

  • Database级别角色:db_owner

Server级别权限

  • CONNECT SQL

  • SHUTDOWN

  • CREATE ENDPOINT

  • CREATE ANY DATABASE

  • CREATE AVAILABILITY GROUP

  • ALTER ANY LOGIN

  • ALTER ANY CREDENTIAL

  • ALTER ANY ENDPOINT

  • ALTER ANY LINKED SERVER

  • ALTER ANY CONNECTION

  • ALTER ANY DATABASE

  • ALTER RESOURCES

  • ALTER SETTINGS

  • ALTER TRACE

  • ALTER ANY AVAILABILITY GROUP

  • ADMINISTER BULK OPERATIONS

  • AUTHENTICATE SERVER

  • EXTERNAL ACCESS ASSEMBLY

  • VIEW ANY DATABASE

  • VIEW ANY DEFINITION

  • VIEW SERVER STATE

  • CREATE DDL EVENT NOTIFICATION

  • CREATE TRACE EVENT NOTIFICATION

  • ALTER ANY EVENT NOTIFICATION

  • ALTER SERVER STATE

  • UNSAFE ASSEMBLY

  • ALTER ANY SERVER AUDIT

  • CREATE SERVER ROLE

  • ALTER ANY SERVER ROLE

  • ALTER ANY EVENT SESSION

  • CONNECT ANY DATABASE

  • IMPERSONATE ANY LOGIN

  • SELECT ALL USER SECURABLES

  • CONTROL SERVER

  • CREATE TABLE

  • CREATE VIEW

  • CREATE PROCEDURE

  • CREATE FUNCTION

  • CREATE RULE

  • CREATE DEFAULT

  • BACKUP DATABASE

  • BACKUP LOG

  • CREATE DATABASE

  • CREATE TYPE

  • CREATE ASSEMBLY

  • CREATE XML SCHEMA COLLECTION

  • CREATE SCHEMA

  • CREATE SYNONYM

  • CREATE AGGREGATE

  • CREATE ROLE

  • CREATE MESSAGE TYPE

  • CREATE SERVICE

  • CREATE CONTRACT

  • CREATE REMOTE SERVICE BINDING

  • CREATE ROUTE

  • CREATE QUEUE

  • CREATE SYMMETRIC KEY

  • CREATE ASYMMETRIC KEY

  • CREATE FULLTEXT CATALOG

  • CREATE CERTIFICATE

  • CREATE DATABASE DDL EVENT NOTIFICATION

  • CONNECT

  • CONNECT REPLICATION

  • CHECKPOINT

  • SUBSCRIBE QUERY NOTIFICATIONS

  • AUTHENTICATE

  • SHOWPLAN

  • ALTER ANY USER

  • ALTER ANY ROLE

  • ALTER ANY APPLICATION ROLE

  • ALTER ANY COLUMN ENCRYPTION KEY

  • ALTER ANY COLUMN MASTER KEY

  • ALTER ANY SCHEMA

  • ALTER ANY ASSEMBLY

  • ALTER ANY DATABASE SCOPED CONFIGURATION

  • ALTER ANY DATASPACE

  • ALTER ANY EXTERNAL DATA SOURCE

  • ALTER ANY EXTERNAL FILE FORMAT

  • ALTER ANY MESSAGE TYPE

  • ALTER ANY CONTRACT

  • ALTER ANY SERVICE

  • ALTER ANY REMOTE SERVICE BINDING

  • ALTER ANY ROUTE

  • ALTER ANY FULLTEXT CATALOG

  • ALTER ANY SYMMETRIC KEY

  • ALTER ANY ASYMMETRIC KEY

  • ALTER ANY CERTIFICATE

  • ALTER ANY SECURITY POLICY

  • SELECT

  • INSERT

  • UPDATE

  • DELETE

  • REFERENCES

  • EXECUTE

  • ALTER ANY DATABASE DDL TRIGGER

  • ALTER ANY DATABASE EVENT NOTIFICATION

  • ALTER ANY DATABASE AUDIT

  • ALTER ANY DATABASE EVENT SESSION

  • KILL DATABASE CONNECTION

  • VIEW ANY COLUMN ENCRYPTION KEY DEFINITION

  • VIEW ANY COLUMN MASTER KEY DEFINITION

  • VIEW DATABASE STATE

  • VIEW DEFINITION

  • TAKE OWNERSHIP

  • ALTER

  • ALTER ANY MASK

  • UNMASK

  • EXECUTE ANY EXTERNAL SCRIPT

  • CONTROL