Baoding-FenShuaJiang
/
Green_GoodERP18_FSJ_Standard
Seguir 1
Destacar 0
Wiki 捐赠
gooderp18绿色标准版
No puede seleccionar más de 25 temas Los temas deben comenzar con una letra o número, pueden incluir guiones ('-') y pueden tener hasta 35 caracteres de largo.
Árbol: 0f75e31513
Ramas Etiquetas
${ item.name }
Crear rama ${ searchTerm }
desde '0f75e31513'
${ noResults }
Green_GoodERP18_FSJ_Standard/PostgreSQL/doc/postgresql/html/app-createuser.html

182 líneas
17KB
Original Blame Histórico 

  1. <?xml version="1.0" encoding="UTF-8" standalone="no"?>

  2. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>createuser</title><link rel="stylesheet" type="text/css" href="stylesheet.css" /><link rev="made" href="pgsql-docs@lists.postgresql.org" /><meta name="generator" content="DocBook XSL Stylesheets V1.79.1" /><link rel="prev" href="app-createdb.html" title="createdb" /><link rel="next" href="app-dropdb.html" title="dropdb" /></head><body><div xmlns="http://www.w3.org/TR/xhtml1/transitional" class="navheader"><table width="100%" summary="Navigation header"><tr><th colspan="5" align="center"><span xmlns="http://www.w3.org/1999/xhtml" class="application">createuser</span></th></tr><tr><td width="10%" align="left"><a accesskey="p" href="app-createdb.html" title="createdb">Prev</a> </td><td width="10%" align="left"><a accesskey="u" href="reference-client.html" title="PostgreSQL Client Applications">Up</a></td><th width="60%" align="center">PostgreSQL Client Applications</th><td width="10%" align="right"><a accesskey="h" href="index.html" title="PostgreSQL 12.4 Documentation">Home</a></td><td width="10%" align="right"> <a accesskey="n" href="app-dropdb.html" title="dropdb">Next</a></td></tr></table><hr></hr></div><div class="refentry" id="APP-CREATEUSER"><div class="titlepage"></div><a id="id-1.9.4.5.1" class="indexterm"></a><div class="refnamediv"><h2><span class="refentrytitle"><span class="application">createuser</span></span></h2><p>createuser — define a new <span class="productname">PostgreSQL</span> user account</p></div><div class="refsynopsisdiv"><h2>Synopsis</h2><div class="cmdsynopsis"><p id="id-1.9.4.5.4.1"><code class="command">createuser</code> [<em class="replaceable"><code>connection-option</code></em>...] [<em class="replaceable"><code>option</code></em>...] [<em class="replaceable"><code>username</code></em>]</p></div></div><div class="refsect1" id="id-1.9.4.5.5"><h2>Description</h2><p>

  3.    <span class="application">createuser</span> creates a

  4.    new <span class="productname">PostgreSQL</span> user (or more precisely, a role).

  5.    Only superusers and users with <code class="literal">CREATEROLE</code> privilege can create

  6.    new users, so <span class="application">createuser</span> must be

  7.    invoked by someone who can connect as a superuser or a user with

  8.    <code class="literal">CREATEROLE</code> privilege.

  9.   </p><p>

  10.    If you wish to create a new superuser, you must connect as a

  11.    superuser, not merely with <code class="literal">CREATEROLE</code> privilege.

  12.    Being a superuser implies the ability to bypass all access permission

  13.    checks within the database, so superuserdom should not be granted lightly.

  14.   </p><p>

  15.    <span class="application">createuser</span> is a wrapper around the

  16.    <acronym class="acronym">SQL</acronym> command <a class="xref" href="sql-createrole.html" title="CREATE ROLE"><span class="refentrytitle">CREATE ROLE</span></a>.

  17.    There is no effective difference between creating users via

  18.    this utility and via other methods for accessing the server.

  19.   </p></div><div class="refsect1" id="id-1.9.4.5.6"><h2>Options</h2><p>

  20.    <span class="application">createuser</span> accepts the following command-line arguments:

  21. 

  22.     </p><div class="variablelist"><dl class="variablelist"><dt><span class="term"><em class="replaceable"><code>username</code></em></span></dt><dd><p>

  23.         Specifies the name of the <span class="productname">PostgreSQL</span> user

  24.         to be created.

  25.         This name must be different from all existing roles in this

  26.         <span class="productname">PostgreSQL</span> installation.

  27.        </p></dd><dt><span class="term"><code class="option">-c <em class="replaceable"><code>number</code></em></code><br /></span><span class="term"><code class="option">--connection-limit=<em class="replaceable"><code>number</code></em></code></span></dt><dd><p>

  28.         Set a maximum number of connections for the new user.

  29.         The default is to set no limit.

  30.        </p></dd><dt><span class="term"><code class="option">-d</code><br /></span><span class="term"><code class="option">--createdb</code></span></dt><dd><p>

  31.         The new user will be allowed to create databases.

  32.        </p></dd><dt><span class="term"><code class="option">-D</code><br /></span><span class="term"><code class="option">--no-createdb</code></span></dt><dd><p>

  33.         The new user will not be allowed to create databases.  This is the

  34.         default.

  35.        </p></dd><dt><span class="term"><code class="option">-e</code><br /></span><span class="term"><code class="option">--echo</code></span></dt><dd><p>

  36.         Echo the commands that <span class="application">createuser</span> generates

  37.         and sends to the server.

  38.        </p></dd><dt><span class="term"><code class="option">-E</code><br /></span><span class="term"><code class="option">--encrypted</code></span></dt><dd><p>

  39.         This option is obsolete but still accepted for backward

  40.         compatibility.

  41.        </p></dd><dt><span class="term"><code class="option">-g <em class="replaceable"><code>role</code></em></code><br /></span><span class="term"><code class="option">--role=<em class="replaceable"><code>role</code></em></code></span></dt><dd><p>

  42.          Indicates role to which this role will be added immediately as a new

  43.          member. Multiple roles to which this role will be added as a member

  44.          can be specified by writing multiple

  45.          <code class="option">-g</code> switches.

  46.          </p></dd><dt><span class="term"><code class="option">-i</code><br /></span><span class="term"><code class="option">--inherit</code></span></dt><dd><p>

  47.         The new role will automatically inherit privileges of roles

  48.         it is a member of.

  49.         This is the default.

  50.        </p></dd><dt><span class="term"><code class="option">-I</code><br /></span><span class="term"><code class="option">--no-inherit</code></span></dt><dd><p>

  51.         The new role will not automatically inherit privileges of roles

  52.         it is a member of.

  53.        </p></dd><dt><span class="term"><code class="option">--interactive</code></span></dt><dd><p>

  54.         Prompt for the user name if none is specified on the command line, and

  55.         also prompt for whichever of the options

  56.         <code class="option">-d</code>/<code class="option">-D</code>,

  57.         <code class="option">-r</code>/<code class="option">-R</code>,

  58.         <code class="option">-s</code>/<code class="option">-S</code> is not specified on the command

  59.         line.  (This was the default behavior up to PostgreSQL 9.1.)

  60.        </p></dd><dt><span class="term"><code class="option">-l</code><br /></span><span class="term"><code class="option">--login</code></span></dt><dd><p>

  61.         The new user will be allowed to log in (that is, the user name

  62.         can be used as the initial session user identifier).

  63.         This is the default.

  64.        </p></dd><dt><span class="term"><code class="option">-L</code><br /></span><span class="term"><code class="option">--no-login</code></span></dt><dd><p>

  65.         The new user will not be allowed to log in.

  66.         (A role without login privilege is still useful as a means of

  67.         managing database permissions.)

  68.        </p></dd><dt><span class="term"><code class="option">-P</code><br /></span><span class="term"><code class="option">--pwprompt</code></span></dt><dd><p>

  69.        If given, <span class="application">createuser</span> will issue a prompt for

  70.        the password of the new user. This is not necessary if you do not plan

  71.        on using password authentication.

  72.        </p></dd><dt><span class="term"><code class="option">-r</code><br /></span><span class="term"><code class="option">--createrole</code></span></dt><dd><p>

  73.         The new user will be allowed to create new roles (that is,

  74.         this user will have <code class="literal">CREATEROLE</code> privilege).

  75.        </p></dd><dt><span class="term"><code class="option">-R</code><br /></span><span class="term"><code class="option">--no-createrole</code></span></dt><dd><p>

  76.         The new user will not be allowed to create new roles.  This is the

  77.         default.

  78.        </p></dd><dt><span class="term"><code class="option">-s</code><br /></span><span class="term"><code class="option">--superuser</code></span></dt><dd><p>

  79.         The new user will be a superuser.

  80.        </p></dd><dt><span class="term"><code class="option">-S</code><br /></span><span class="term"><code class="option">--no-superuser</code></span></dt><dd><p>

  81.         The new user will not be a superuser.  This is the default.

  82.        </p></dd><dt><span class="term"><code class="option">-V</code><br /></span><span class="term"><code class="option">--version</code></span></dt><dd><p>

  83.        Print the <span class="application">createuser</span> version and exit.

  84.        </p></dd><dt><span class="term"><code class="option">--replication</code></span></dt><dd><p>

  85.         The new user will have the <code class="literal">REPLICATION</code> privilege,

  86.         which is described more fully in the documentation for <a class="xref" href="sql-createrole.html" title="CREATE ROLE"><span class="refentrytitle">CREATE ROLE</span></a>.

  87.        </p></dd><dt><span class="term"><code class="option">--no-replication</code></span></dt><dd><p>

  88.         The new user will not have the <code class="literal">REPLICATION</code>

  89.         privilege, which is described more fully in the documentation for <a class="xref" href="sql-createrole.html" title="CREATE ROLE"><span class="refentrytitle">CREATE ROLE</span></a>.

  90.        </p></dd><dt><span class="term"><code class="option">-?</code><br /></span><span class="term"><code class="option">--help</code></span></dt><dd><p>

  91.        Show help about <span class="application">createuser</span> command line

  92.        arguments, and exit.

  93.        </p></dd></dl></div><p>

  94.   </p><p>

  95.    <span class="application">createuser</span> also accepts the following

  96.    command-line arguments for connection parameters:

  97. 

  98.    </p><div class="variablelist"><dl class="variablelist"><dt><span class="term"><code class="option">-h <em class="replaceable"><code>host</code></em></code><br /></span><span class="term"><code class="option">--host=<em class="replaceable"><code>host</code></em></code></span></dt><dd><p>

  99.         Specifies the host name of the machine on which the

  100.         server

  101.         is running.  If the value begins with a slash, it is used

  102.         as the directory for the Unix domain socket.

  103.        </p></dd><dt><span class="term"><code class="option">-p <em class="replaceable"><code>port</code></em></code><br /></span><span class="term"><code class="option">--port=<em class="replaceable"><code>port</code></em></code></span></dt><dd><p>

  104.         Specifies the TCP port or local Unix domain socket file

  105.         extension on which the server

  106.         is listening for connections.

  107.        </p></dd><dt><span class="term"><code class="option">-U <em class="replaceable"><code>username</code></em></code><br /></span><span class="term"><code class="option">--username=<em class="replaceable"><code>username</code></em></code></span></dt><dd><p>

  108.         User name to connect as (not the user name to create).

  109.        </p></dd><dt><span class="term"><code class="option">-w</code><br /></span><span class="term"><code class="option">--no-password</code></span></dt><dd><p>

  110.         Never issue a password prompt.  If the server requires

  111.         password authentication and a password is not available by

  112.         other means such as a <code class="filename">.pgpass</code> file, the

  113.         connection attempt will fail.  This option can be useful in

  114.         batch jobs and scripts where no user is present to enter a

  115.         password.

  116.        </p></dd><dt><span class="term"><code class="option">-W</code><br /></span><span class="term"><code class="option">--password</code></span></dt><dd><p>

  117.         Force <span class="application">createuser</span> to prompt for a

  118.         password (for connecting to the server, not for the

  119.         password of the new user).

  120.        </p><p>

  121.         This option is never essential, since

  122.         <span class="application">createuser</span> will automatically prompt

  123.         for a password if the server demands password authentication.

  124.         However, <span class="application">createuser</span> will waste a

  125.         connection attempt finding out that the server wants a password.

  126.         In some cases it is worth typing <code class="option">-W</code> to avoid the extra

  127.         connection attempt.

  128.        </p></dd></dl></div><p>

  129.   </p></div><div class="refsect1" id="id-1.9.4.5.7"><h2>Environment</h2><div class="variablelist"><dl class="variablelist"><dt><span class="term"><code class="envar">PGHOST</code><br /></span><span class="term"><code class="envar">PGPORT</code><br /></span><span class="term"><code class="envar">PGUSER</code></span></dt><dd><p>

  130.       Default connection parameters

  131.      </p></dd><dt><span class="term"><code class="envar">PG_COLOR</code></span></dt><dd><p>

  132.       Specifies whether to use color in diagnostic messages. Possible values

  133.       are <code class="literal">always</code>, <code class="literal">auto</code> and

  134.       <code class="literal">never</code>.

  135.      </p></dd></dl></div><p>

  136.    This utility, like most other <span class="productname">PostgreSQL</span> utilities,

  137.    also uses the environment variables supported by <span class="application">libpq</span>

  138.    (see <a class="xref" href="libpq-envars.html" title="33.14. Environment Variables">Section 33.14</a>).

  139.   </p></div><div class="refsect1" id="id-1.9.4.5.8"><h2>Diagnostics</h2><p>

  140.    In case of difficulty, see <a class="xref" href="sql-createrole.html" title="CREATE ROLE"><span class="refentrytitle">CREATE ROLE</span></a>

  141.    and <a class="xref" href="app-psql.html" title="psql"><span class="refentrytitle"><span class="application">psql</span></span></a> for

  142.    discussions of potential problems and error messages.

  143.    The database server must be running at the

  144.    targeted host.  Also, any default connection settings and environment

  145.    variables used by the <span class="application">libpq</span> front-end

  146.    library will apply.

  147.   </p></div><div class="refsect1" id="id-1.9.4.5.9"><h2>Examples</h2><p>

  148.     To create a user <code class="literal">joe</code> on the default database

  149.     server:

  150. </p><pre class="screen">

  151. <code class="prompt">$ </code><strong class="userinput"><code>createuser joe</code></strong>

  152. </pre><p>

  153.    </p><p>

  154.     To create a user <code class="literal">joe</code> on the default database

  155.     server with prompting for some additional attributes:

  156. </p><pre class="screen">

  157. <code class="prompt">$ </code><strong class="userinput"><code>createuser --interactive joe</code></strong>

  158. <code class="computeroutput">Shall the new role be a superuser? (y/n) </code><strong class="userinput"><code>n</code></strong>

  159. <code class="computeroutput">Shall the new role be allowed to create databases? (y/n) </code><strong class="userinput"><code>n</code></strong>

  160. <code class="computeroutput">Shall the new role be allowed to create more new roles? (y/n) </code><strong class="userinput"><code>n</code></strong>

  161. </pre><p>

  162.    </p><p>

  163.     To create the same user <code class="literal">joe</code> using the

  164.     server on host <code class="literal">eden</code>, port 5000, with attributes explicitly specified,

  165.     taking a look at the underlying command:

  166. </p><pre class="screen">

  167. <code class="prompt">$ </code><strong class="userinput"><code>createuser -h eden -p 5000 -S -D -R -e joe</code></strong>

  168. <code class="computeroutput">CREATE ROLE joe NOSUPERUSER NOCREATEDB NOCREATEROLE INHERIT LOGIN;</code>

  169. </pre><p>

  170.    </p><p>

  171.     To create the user <code class="literal">joe</code> as a superuser,

  172.     and assign a password immediately:

  173. </p><pre class="screen">

  174. <code class="prompt">$ </code><strong class="userinput"><code>createuser -P -s -e joe</code></strong>

  175. <code class="computeroutput">Enter password for new role: </code><strong class="userinput"><code>xyzzy</code></strong>

  176. <code class="computeroutput">Enter it again: </code><strong class="userinput"><code>xyzzy</code></strong>

  177. <code class="computeroutput">CREATE ROLE joe PASSWORD 'md5b5f5ba1a423792b526f799ae4eb3d59e' SUPERUSER CREATEDB CREATEROLE INHERIT LOGIN;</code>

  178. </pre><p>

  179.     In the above example, the new password isn't actually echoed when typed,

  180.     but we show what was typed for clarity.  As you see, the password is

  181.     encrypted before it is sent to the client.

  182.    </p></div><div class="refsect1" id="id-1.9.4.5.10"><h2>See Also</h2><span class="simplelist"><a class="xref" href="app-dropuser.html" title="dropuser"><span class="refentrytitle"><span class="application">dropuser</span></span></a>, <a class="xref" href="sql-createrole.html" title="CREATE ROLE"><span class="refentrytitle">CREATE ROLE</span></a></span></div></div><div class="navfooter"><hr /><table width="100%" summary="Navigation footer"><tr><td width="40%" align="left"><a accesskey="p" href="app-createdb.html">Prev</a> </td><td width="20%" align="center"><a accesskey="u" href="reference-client.html">Up</a></td><td width="40%" align="right"> <a accesskey="n" href="app-dropdb.html">Next</a></td></tr><tr><td width="40%" align="left" valign="top"><span class="application">createdb</span> </td><td width="20%" align="center"><a accesskey="h" href="index.html">Home</a></td><td width="40%" align="right" valign="top"> <span class="application">dropdb</span></td></tr></table></div></body></html>
上海开阖软件有限公司 沪ICP备12045867号-1