| Command | Description |
|---|---|
| list users | View all added users. |
add user <username> |
Add a user. |
remove user <username> |
Remove a user. |
Role Management
| Command | Description |
|---|---|
| list roles | View all created roles. |
create role <rolename> |
Create a role. |
drop role <rolename> |
Drop a role. |
grant <rolelist> to <username> |
Grant a role or multiple roles to a user. |
revoke <rolelist> from <username> |
Revoke the role from a user. |
ACL Authorization
| Command | Description |
|---|---|
grant <privList> on <objType> <objName> to user <username> |
Grant privileges to a user. |
grant <privList> on <objType> <objName> to role <rolename> |
Grant privileges to a role. |
revoke <privList> on <objType> <objName> from user <username> |
Revoke the privilege from a user. |
revoke <privList> on <objType> <objName> from role <rolename> |
Revoke the privilege from a role. |
Privilege Review
| Command | Description |
|---|---|
| whoami | View the information of a current user. |
show grants [for <username>] [on type <objectType>] |
View the privilege and role of a user. |
show acl for <objectName> [on type <objectType>] |
View the information about authorization of a specific object. |
describe role <roleName> |
View the information about authorization of a role and the role assignment. |