GRANT
Grants permissions to a role. Can also be used to grant a role to another role or a user.
For more information, see Role-based access control.
Syntax
GRANT <permission> ON <object_type> <object_name> TO <role_name>
or
GRANT ROLE <role_name> TO { USER <user_name> | ROLE <role2_name> }
Parameters
Parameter | Description |
---|---|
<permission> | The name of the permission to grant to a role. Permissions that can be granted depend on the object they are granted on - for a full list see Permissions. |
<object_type> | The object to grant permissions on - either DATABASE or ENGINE. |
<object_name> | The name of the database or engine to grant permissions on. |
<role_name> | The name of the role. |
<user_name> | The name of the user for the role grant. |
<role2_name> | The name of the role for the role grant. |
Example
The following command will grant USAGE permissions on the database “my_db” to the role “user_role”.
GRANT USAGE ON DATABASE my_db TO user_role;
Example 2
The following command will grant USAGE permissions on all databases in the account “dev” to the role “user_role”.
GRANT USAGE ANY DATABASE ON ACCOUNT dev TO user_role;