为PostgreSQL的Azure数据库更好地解释用户和角色:

To explain the users and roles a little better for Azure Database for PostgreSQL:

默认情况下，在创建服务器时，我们定义了以下3个角色，您在运行SELECT rolname FROM pg_roles; –

By default, when a server is created we have the following 3 roles defined, which you can also see when you run SELECT rolname FROM pg_roles; –

1. azure_pg_admin
2. azure_superuser
3. 服务器管理员登录名–用户用来创建服务器的管理员登录名–默认情况下是azure_pg_admin的成员.

我们是托管的PaaS服务，而Microsoft是azure_superuser. 我们不向用户授予超级用户特权.

Ours is a managed PaaS service and Microsoft is the azure_superuser. We don’t grant superuser privileges to the user.

以此为基线，在任何给定时间至少有一个角色(用户)是azure_pg_admin组的一部分，即服务器管理员登录名.该用户可以创建数据库，创建自定义角色和自定义特权，以及创建azure_pg_admin成员的其他用户.用户不是该组的一部分.该组之外的任何用户都将没有这些特权.

With that as baseline, there is at least one role (user) at any given time that is part of azure_pg_admin group i.e. server admin login. This user can create databases, create custom roles and customize privileges, and create additional users that are member of azure_pg_admin. A user is either a part of this group or not. Any user outside this group will not have those privileges.

希望可以帮助您回答问题.

Hope that helps answer your question.

Saloni