GRANT

Grants permissions to a role. Can also be used to grant a role to another role or a user.

For more information, see Role-based access control.

Syntax

GRANT <permission> ON <object_type> <object_name> TO <role_name>

or

GRANT ROLE <role_name> TO { USER <user_name> | ROLE <role2_name> }

Parameters

Parameter Description
<permission> The name of the permission to grant to a role. Permissions that can be granted depend on the object they are granted on - for a full list see Permissions.
<object_type> The object to grant permissions on - either DATABASE or ENGINE.
<object_name> The name of the database or engine to grant permissions on.
<role_name> The name of the role.
<user_name> The name of the user for the role grant.
<role2_name> The name of the role for the role grant.

Example

The following command will grant USAGE permissions on the database “my_db” to the role “user_role”.

GRANT USAGE ON DATABASE my_db TO user_role;

Example 2

The following command will grant USAGE permissions on all databases in the account “dev” to the role “user_role”.

GRANT USAGE ANY DATABASE ON ACCOUNT dev TO user_role;