Database Reference
In-Depth Information
list all permissions on
anotherkeyspace.privileges;
Again, we receive a “not authorized” error (see
Figure 4-15
).
nor-
maluser
has been given all permissions on the
privileges
table, but it
can't view everyone's permissions. However,
normaluser
can per-
form other permitted operations mentioned previously.
Figure 4-15
.
No permission given to normaluser on anotherkeyspace
15.
Let's also try having
normaluser
drop itself and
superuser
(see
Figure 4-16
)
.
drop user normaluser;drop user 'superuser';
The result, shown in
Figure 4-16
,
indicates that
normaluser
can't drop, revoke, or view permissions of other users. But a
super-
user
can!
Figure 4-16
.
Dropping of user is not allowed with non-superuser
16.
So, let's connect with
superuser
and try to revoke permissions
given to a specific user (
normaluser
, in this case), as follows:
revoke all permissions on privileges from
normaluser;
list all permissions on privileges;
Figure 4-17
shows that the action was successful.