SVV_DATABASE_PRIVILEGES - Amazon Redshift
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

SVV_DATABASE_PRIVILEGES

Use SVV_DATABASE_PRIVILEGES to view the database permissions that are explicitly granted to users, roles, and groups in your Amazon Redshift cluster.

SVV_DATABASE_PRIVILEGES is visible to the following users:

  • Superusers

  • Users with the ACCESS SYSTEM TABLE permission

Other users can only see identities they have access to or own.

Table columns

Column name Data type Description
database_name text The name of the database.
privilege_type text The type of the permission. For permissions with a privilege_scope of database, possible values are USAGE, CREATE, TEMPORARY, TEMP, and ALTER. For privilege_scope values other than database, possible values include any permission type available on the permission's scope.
identity_id integer The ID of the identity. Possible values are user ID, role ID, or group ID.
identity_name text The name of the identity.
identity_type text The type of the identity. Possible values are user, role, group, or public.
admin_option boolean A value that indicates whether the user can grant the permission to other users and roles. It is always false for the role and group identity type.
privilege_scope text The scope of the permission specified in privilege_type. Possible values are as follows:
  • DATABASE

  • SCHEMAS

  • TABLES

  • FUNCTIONS

  • LANGUAGES

For information on scoped permissions, go to Scoped permissions.

Sample query

The following example displays the result of the SVV_DATABASE_PRIVILEGES.

SELECT database_name,privilege_type,identity_name,identity_type,admin_option FROM svv_database_privileges WHERE database_name = 'test_db'; database_name | privilege_type | identity_name | identity_type | admin_option ---------------+----------------+---------------+---------------+-------------- test_db | CREATE | reguser | user | False test_db | CREATE | role1 | role | False test_db | TEMP | public | public | False test_db | TEMP | role1 | role | False