更新时间:2022-04-08 03:21:10
为PostgreSQL的Azure数据库更好地解释用户和角色:
To explain the users and roles a little better for Azure Database for PostgreSQL:
默认情况下,在创建服务器时,我们定义了以下3个角色,您在运行SELECT rolname FROM pg_roles;
–
By default, when a server is created we have the following 3 roles defined, which you can also see when you run SELECT rolname FROM pg_roles;
–
我们是托管的PaaS服务,而Microsoft是azure_superuser. 我们不向用户授予超级用户特权.
Ours is a managed PaaS service and Microsoft is the azure_superuser. We don’t grant superuser privileges to the user.
以此为基线,在任何给定时间至少有一个角色(用户)是azure_pg_admin组的一部分,即服务器管理员登录名.该用户可以创建数据库,创建自定义角色和自定义特权,以及创建azure_pg_admin成员的其他用户.用户不是该组的一部分.该组之外的任何用户都将没有这些特权.
With that as baseline, there is at least one role (user) at any given time that is part of azure_pg_admin group i.e. server admin login. This user can create databases, create custom roles and customize privileges, and create additional users that are member of azure_pg_admin. A user is either a part of this group or not. Any user outside this group will not have those privileges.
希望可以帮助您回答问题.
Hope that helps answer your question.
Saloni