The access of each ident to the database is defined by privileges granted within the system.
The privileges are grouped as follows:
gives the right to perform databank backup and restore operations. gives the right to create databanks. gives the right to create idents. gives the right to create schemas. gives the right to create and manage databank shadows. gives the right to execute the UPDATE STATISTICS statement.
gives the right to create tables in a specified databank. gives the right to create sequences in a specified databank. gives the right to access a routine or to enter (connect to) a specified PROGRAM ident. grants membership in a specified GROUP ident. gives the right to specify the named domain where a data type would normally be specified (in contexts where use of domains is allowed) or the right to use a specified sequence or collation.
gives the right to read the table contents. gives the right to add new rows to the table. gives the right to remove rows from the table. gives the right to update the contents of the table. gives the right to use the primary key or unique keys of the table as a foreign key from another table.
System privileges are automatically granted to the system administrator at installation, and may be passed on to other idents.
Object and access privileges are initially granted only to the creator of an object. The creator may however grant the privileges on to other idents.
All privileges may be granted with or without GRANT OPTION, which controls the right of the receiving ident to grant the privilege on to another ident.
Certain operations are not controlled by explicit privileges, but may only be performed by the creator of the object involved. These operations include ALTER (with the exception of ALTER IDENT, which may be performed by either the ident himself or by the creator of the ident), DROP, and COMMENT. Similarly, privileges may only be revoked by their grantor.
Mimer Information Technology AB
Voice: +46 18 780 92 00
Fax: +46 18 780 92 40