# 权限类型
# 系统权限：如CREATEDB, CREATEROLE等
# 对象权限：如SELECT, INSERT, UPDATE, DELETE等
# 角色权限：通过角色分配权限

# 角色管理
# 创建角色
CREATE ROLE fgedu_role;

# 授予角色权限
GRANT SELECT, INSERT, UPDATE, DELETE ON fgedu.fgedu_test TO fgedu_role;

# 将角色授予用户
GRANT fgedu_role TO fgedu;

# 创建用户
CREATE USER fgedu WITH PASSWORD ‘Fgedu123!’;

# 创建用户并指定权限
CREATE USER fgedu01 WITH PASSWORD ‘Fgedu01!’
NOSUPERUSER NOCREATEDB NOCREATEROLE;

# 修改用户密码
ALTER USER fgedu WITH PASSWORD ‘NewPassword123!’;

# 锁定用户
ALTER USER fgedu ACCOUNT LOCK;

# 解锁用户
ALTER USER fgedu ACCOUNT UNLOCK;

# 删除用户
DROP USER IF EXISTS fgedu01;

# 授予用户数据库权限
GRANT CONNECT ON DATABASE fgedudb TO fgedu;

# 授予用户表权限学习交流加群风哥微信: itpux-com
GRANT SELECT, INSERT, UPDATE, DELETE ON fgedu.fgedu_test TO fgedu;

# 授予用户模式权限
GRANT USAGE ON SCHEMA fgedu TO fgedu;

# 授予用户系统权限
GRANT CREATEDB TO fgedu;

# 回收权限
REVOKE DELETE ON fgedu.fgedu_test FROM fgedu;

# 创建角色并分配权限
CREATE ROLE fgedu_read;
GRANT SELECT ON ALL TABLES IN SCHEMA fgedu TO fgedu_read;
GRANT fgedu_read TO fgedu01, fgedu02;