Overview of Database User Management

Database user management

Database user management can create multiple User/Roles and grant these User/Roles permission to read and write data. When multiple users use the data in the same database, it plays a role in protecting data integrity and improving the efficiency of Database Management. In the database, the description of User/Role is as follows:

User/Role	Description
Database user	An entity used to identify and manage database Access Permissions. Each user has their own username and password to verify their identity and Access Permissions.
Database role	A database role is a concept used for permission management in a Database Management system. A role can be thought of as a collection of permissions that define the database operations that the role can perform. By assigning a role to a user, the user has all the privileges of the role.
Superuser	It belongs to the database user and is the user with the highest authority in the database system. The user has full control over the database, including but not limited to adding, deleting, modifying and searching data, creating and deleting users and roles, and granting or Revoke roles to all users.
Ordinary user	It belongs to the database user, whose operation authority to the database is assigned by the super user or the data owner.

Database is widely used in GIS industry, and users with different GIS business scope should have different permissions to protect GIS data security. The recommended user permissions are as follows:

Scope of business	User type	Main responsibilities	Primary permissions
GIS Business Data Maintenance	Ordinary user	Maintain the GIS business data for which you are responsible Authorize others to maintain their own GIS business data	Select, Insert, Update, Delete permissions for Dataset Creation Permissions for Data source
GIS Data Viewer	Ordinary user	Using published GIS data	Usage Permissions for Data source Select Permissions for Dataset
GIS spatial database manager	Superuser	New/Delete Data Source (Spatial Library) Create users and roles to maintain data Maintain data for different users	All permissions

The database user management chapter will introduce how to manage database users, including creating User/Role, managing roles, and managing the authority of Datasource/Dataset:

Create Database User : Describes how to create a regular user through the superuser.
Create and Manage Roles : describes how to Create a role and authorize/revoke the role to the user.
Data source Permission s Management : Describes the types of Datasource Permissions and how to delegate Datasource Permissions to a user or role.
Dataset permission s management : Describes the types of Dataset Permissions and how to grant Dataset Permissions to users or roles.

Currently, database user management is only supported for PostGIS and Yukon.

Starting with the SuperMap iDesktopX 11i (2024) release, database user management is available.