Granting privileges to a role
You can grant table-level and routine-level access privileges to a role if you have the authority to grant these same privileges to login names or to PUBLIC. You can also grant type-level privileges to a role. A role cannot hold database-level privileges.
- You can specify the AS grantor clause.
In this way, whoever has the role can revoke these same privileges. For more information, see AS grantor clause.
- You cannot include the WITH GRANT OPTION clause.
A role cannot, in turn, grant the same access privileges to another user.
GRANT INSERT ON supplier TO payables;
Anyone who has been granted the payables role, and who successfully activates it by issuing the SET ROLE statement, can now insert rows into supplier.