oceanbase.CDB_OB_USERS|V4.2.5| docs|Distributed Database

oceanbase.CDB_OB_USERS

Last Updated：2025-12-04 07:10:02 Updated

Note

Starting from V4.0.0, this view is introduced.

Purpose

Displays the users and roles in all tenants of a cluster.

Columns

Column	Type	Nullable?	Description
TENANT_ID	bigint(20)	NO	Tenant ID.
USER_NAME	varchar(128)	NO	Username or role name.
HOST	varchar(128)	NO	Server name.
PASSWD	varchar(128)	NO	Username or role password.
INFO	varchar(4096)	NO	Username or role information.
PRIV_ALTER	varchar(3)	NO	Privilege to alter a database or a table.
PRIV_CREATE	varchar(3)	NO	Privilege to create a database or a table.
PRIV_DELETE	varchar(3)	NO	Privilege to delete records in a database or a table.
PRIV_DROP	varchar(3)	NO	Privilege to drop a database or a table.
PRIV_GRANT_OPTION	varchar(3)	NO	Privilege to grant privileges.
PRIV_INSERT	varchar(3)	NO	Privilege to insert records.
PRIV_UPDATE	varchar(3)	NO	Privilege to update records.
PRIV_SELECT	varchar(3)	NO	Privilege to query records.
PRIV_INDEX	varchar(3)	NO	Privilege to set indexes.
PRIV_CREATE_VIEW	varchar(3)	NO	Privilege to create views.
PRIV_SHOW_VIEW	varchar(3)	NO	Privilege to view views.
PRIV_SHOW_DB	varchar(3)	NO	Privilege to view all databases.
PRIV_CREATE_USER	varchar(3)	NO	Privilege to create users.
PRIV_SUPER	varchar(3)	NO	Privilege to act as the superuser.
IS_LOCKED	varchar(3)	NO	Whether the user or role is locked.
PRIV_PROCESS	varchar(3)	NO	Privilege to view all threads.
PRIV_CREATE_SYNONYM	varchar(3)	NO	Privilege to create synonyms.
SSL_TYPE	bigint(20)	NO	SSL standard encryption security types supported.
SSL_CIPHER	varchar(1024)	NO	SSL standard encryption security passwords supported.
X509_ISSUER	varchar(1024)	NO	X.509 issuer name.
X509_SUBJECT	varchar(1024)	NO	X.509 subject name.
TYPE	varchar(4)	NO	Type: `USER`: user `ROLE`: role
PROFILE_ID	bigint(20)	NO	Profile ID.
PASSWORD_LAST_CHANGED	timestamp(6)	YES	The time when the password was last changed.
PRIV_FILE	varchar(3)	NO	Privilege to view files.
PRIV_ALTER_TENANT	varchar(3)	NO	Privilege to modify tenant information.
PRIV_ALTER_SYSTEM	varchar(3)	NO	Privilege to change server configuration parameters.
PRIV_CREATE_RESOURCE_POOL	varchar(3)	NO	Privilege to create, modify, and delete resource pools.
PRIV_CREATE_RESOURCE_UNIT	varchar(3)	NO	Privilege to create, modify, and delete resource units.
MAX_CONNECTIONS	bigint(20)	NO	Maximum number of connections.
MAX_USER_CONNECTIONS	bigint(20)	NO	Maximum number of tenant connections.
PRIV_REPL_SLAVE	varchar(3)	NO	Privilege to manage replica slave servers. A tenant can determine the positions of the replica slave server and the primary server.
PRIV_REPL_CLIENT	varchar(3)	NO	Privilege to manage the primary server. A tenant can read binary log files used for maintaining the replica database environment. This privilege is located in the primary system to facilitate communication between the host and client.
PRIV_DROP_DATABASE_LINK	varchar(3)	NO	Whether the user has the privilege to delete database links.
PRIV_CREATE_DATABASE_LINK	varchar(3)	NO	Whether the user has the privilege to create database links.
PRIV_EXECUTE	varchar(3)	NO	Whether the user has the privilege to execute procedures and functions.
PRIV_ALTER_ROUTINE	varchar(3)	NO	Whether the user has the privilege to modify and delete procedures and functions.
PRIV_CREATE_ROUTINE	varchar(3)	NO	Whether the user has the privilege to create procedures and functions.
PRIV_CREATE_TABLESPACE	varchar(3)	NO	Whether the user has the privilege to create, modify, and delete tablespaces.
PRIV_SHUTDOWN	varchar(3)	NO	Whether the user has the privilege to execute the mysqladmin shutdown command.
PRIV_RELOAD	varchar(3)	NO	Whether the user has the privilege to perform flush operations.
PRIV_REFERENCES	varchar(3)	NO	Whether the user has the privilege to create foreign keys.
PRIV_CREATE_ROLE	varchar(3)	NO	Whether the user has the privilege to create roles.
PRIV_DROP_ROLE	varchar(3)	NO	Whether the user has the privilege to delete roles.
PRIV_TRIGGER	varchar(3)	NO	Whether the user has the privilege to activate trigger operations.
PRIV_LOCK_TABLE	varchar(3)	NO	Whether the user has the privilege to lock tables.
PRIV_ENCRYPT	varchar(3)	NO	Whether the user can call the ENHANCED_AES_ENCRYPT function.
PRIV_DECRYPT	varchar(3)	NO	Whether the user can call the ENHANCED_AES_DECRYPT function.
PRIV_EVENT	varchar(3)	NO	Whether the user has the privilege to create and manage events.

Query examples

In the sys tenant, query the users and roles of the tenant with the ID of 1002.

obclient [oceanbase]> SELECT * FROM oceanbase.CDB_OB_USERS WHERE TENANT_ID=1002\G

The query result is as follows:

*************************** 1. row ***************************
                TENANT_ID: 1002
                USER_NAME: root
                     HOST: %
                   PASSWD: *****************************
                     INFO: system administrator
               PRIV_ALTER: YES
              PRIV_CREATE: YES
              PRIV_DELETE: YES
                PRIV_DROP: YES
        PRIV_GRANT_OPTION: YES
              PRIV_INSERT: YES
              PRIV_UPDATE: YES
              PRIV_SELECT: YES
               PRIV_INDEX: YES
         PRIV_CREATE_VIEW: YES
           PRIV_SHOW_VIEW: YES
             PRIV_SHOW_DB: YES
         PRIV_CREATE_USER: YES
               PRIV_SUPER: YES
                IS_LOCKED: NO
             PRIV_PROCESS: YES
      PRIV_CREATE_SYNONYM: YES
                 SSL_TYPE: 0
               SSL_CIPHER:
              X509_ISSUER:
             X509_SUBJECT:
                     TYPE: USER
               PROFILE_ID: -1
    PASSWORD_LAST_CHANGED: 2025-02-05 17:48:54.593368
                PRIV_FILE: YES
        PRIV_ALTER_TENANT: YES
        PRIV_ALTER_SYSTEM: YES
PRIV_CREATE_RESOURCE_POOL: YES
PRIV_CREATE_RESOURCE_UNIT: YES
          MAX_CONNECTIONS: 0
     MAX_USER_CONNECTIONS: 0
          PRIV_REPL_SLAVE: YES
         PRIV_REPL_CLIENT: YES
  PRIV_DROP_DATABASE_LINK: YES
PRIV_CREATE_DATABASE_LINK: YES
             PRIV_EXECUTE: YES
       PRIV_ALTER_ROUTINE: YES
      PRIV_CREATE_ROUTINE: YES
   PRIV_CREATE_TABLESPACE: YES
            PRIV_SHUTDOWN: YES
              PRIV_RELOAD: YES
          PRIV_REFERENCES: YES
         PRIV_CREATE_ROLE: YES
           PRIV_DROP_ROLE: YES
             PRIV_TRIGGER: YES
          PRIV_LOCK_TABLE: YES
             PRIV_ENCRYPT: YES
             PRIV_DECRYPT: YES
               PRIV_EVENT: YES
*************************** 2. row ***************************
                TENANT_ID: 1002
                USER_NAME: ORAAUDITOR
                     HOST: %
                   PASSWD: *****************************
                     INFO: system administrator
               PRIV_ALTER: NO
              PRIV_CREATE: NO
              PRIV_DELETE: NO
                PRIV_DROP: NO
        PRIV_GRANT_OPTION: NO
              PRIV_INSERT: NO
              PRIV_UPDATE: NO
              PRIV_SELECT: NO
               PRIV_INDEX: NO
         PRIV_CREATE_VIEW: NO
           PRIV_SHOW_VIEW: NO
             PRIV_SHOW_DB: NO
         PRIV_CREATE_USER: NO
               PRIV_SUPER: NO
                IS_LOCKED: YES
             PRIV_PROCESS: NO
      PRIV_CREATE_SYNONYM: NO
                 SSL_TYPE: 0
               SSL_CIPHER:
              X509_ISSUER:
             X509_SUBJECT:
                     TYPE: USER
               PROFILE_ID: -1
    PASSWORD_LAST_CHANGED: 2025-02-05 17:45:58.962446
                PRIV_FILE: NO
        PRIV_ALTER_TENANT: NO
        PRIV_ALTER_SYSTEM: NO
PRIV_CREATE_RESOURCE_POOL: NO
PRIV_CREATE_RESOURCE_UNIT: NO
          MAX_CONNECTIONS: 0
     MAX_USER_CONNECTIONS: 0
          PRIV_REPL_SLAVE: NO
         PRIV_REPL_CLIENT: NO
  PRIV_DROP_DATABASE_LINK: NO
PRIV_CREATE_DATABASE_LINK: NO
             PRIV_EXECUTE: NO
       PRIV_ALTER_ROUTINE: NO
      PRIV_CREATE_ROUTINE: NO
   PRIV_CREATE_TABLESPACE: NO
            PRIV_SHUTDOWN: NO
              PRIV_RELOAD: NO
          PRIV_REFERENCES: NO
         PRIV_CREATE_ROLE: NO
           PRIV_DROP_ROLE: NO
             PRIV_TRIGGER: NO
          PRIV_LOCK_TABLE: NO
             PRIV_ENCRYPT: NO
             PRIV_DECRYPT: NO
               PRIV_EVENT: NO
*************************** 3. row ***************************
                TENANT_ID: 1002
                USER_NAME: test2
                     HOST: %
                   PASSWD: ************************************
                     INFO:
               PRIV_ALTER: NO
              PRIV_CREATE: NO
              PRIV_DELETE: NO
                PRIV_DROP: NO
        PRIV_GRANT_OPTION: NO
              PRIV_INSERT: NO
              PRIV_UPDATE: NO
              PRIV_SELECT: NO
               PRIV_INDEX: NO
         PRIV_CREATE_VIEW: NO
           PRIV_SHOW_VIEW: NO
             PRIV_SHOW_DB: NO
         PRIV_CREATE_USER: NO
               PRIV_SUPER: NO
                IS_LOCKED: NO
             PRIV_PROCESS: NO
      PRIV_CREATE_SYNONYM: NO
                 SSL_TYPE: 0
               SSL_CIPHER:
              X509_ISSUER:
             X509_SUBJECT:
                     TYPE: USER
               PROFILE_ID: -1
    PASSWORD_LAST_CHANGED: 2025-02-20 15:11:58.158111
                PRIV_FILE: NO
        PRIV_ALTER_TENANT: NO
        PRIV_ALTER_SYSTEM: NO
PRIV_CREATE_RESOURCE_POOL: NO
PRIV_CREATE_RESOURCE_UNIT: NO
          MAX_CONNECTIONS: 0
     MAX_USER_CONNECTIONS: 0
          PRIV_REPL_SLAVE: NO
         PRIV_REPL_CLIENT: NO
  PRIV_DROP_DATABASE_LINK: NO
PRIV_CREATE_DATABASE_LINK: NO
             PRIV_EXECUTE: NO
       PRIV_ALTER_ROUTINE: NO
      PRIV_CREATE_ROUTINE: NO
   PRIV_CREATE_TABLESPACE: NO
            PRIV_SHUTDOWN: NO
              PRIV_RELOAD: NO
          PRIV_REFERENCES: NO
         PRIV_CREATE_ROLE: NO
           PRIV_DROP_ROLE: NO
             PRIV_TRIGGER: NO
          PRIV_LOCK_TABLE: NO
             PRIV_ENCRYPT: NO
             PRIV_DECRYPT: NO
               PRIV_EVENT: NO
3 rows in set

oceanbase.CDB_OB_USERS

Note

Purpose

Columns

Query examples

References