5 Database Utilities

Group privileges

The Eloquence database uses groups to manage database specific privileges. When a user is associated with a group, it will gain all capabilities granted to the group.

Group capabilities which are not data set specific are specified by group privileges. The following group privileges are available:

DADMIN
Group members have administration privileges for this database (this is implied for users which have the DBA privilege).
DBPRIV
Group members are allowed to assign database specific privileges.
A database context must be defined before managing database groups. The DBPRIV privilege is required to maintain database groups.

Syntax:

GRANT {privilege [,privilege ...]}
TO {"group" [,"group" ...]} ;

REVOKE {privilege [,privilege ...]}
FROM {"group" [,"group" ...]} ;

Description:

The GRANT statement is used to add the specified privileges to the capabilities of the group.

The REVOKE statement is used to remove the specified privileges from the capabilities of the given groups.

For example:

   REVOKE DBPRIV FROM "users";
   GRANT DBPRIV,DADMIN TO "dba";

Eloquence Database Manual - 19 DEC 2002