Creating read-only database permissions for a user

Answer

This article describes the process used to create a user account that is able to do SELECTs and LISTs on tables/views for a given database.

1. As the admin user on the system database, create the user account by entering the following:

create user <username> with password '<password>';

grant select on system table to <username>;
grant select on system view to <username>;
grant select on table to <username>;
grant select on view to <username>;
grant list on test to <username>;

SYSTEM(ADMIN)=> create user reed with password 'read';
CREATE USER
SYSTEM(ADMIN)=> \c test
You are now connected to database test.
TEST(ADMIN)=> grant select on system table to reed;
GRANT
TEST(ADMIN)=> grant select on system view to reed;
GRANT
TEST(ADMIN)=> grant select on table to reed;
GRANT
TEST(ADMIN)=> grant select on view to reed;
GRANT
TEST(ADMIN)=> grant list on test to reed;
GRANT

[nz@proddb1 bin]$ nzsql -u reed -pw read test

Welcome to nzsql, the Netezza SQL interactive terminal.

Type: \h for help with SQL commands
\? for help on internal slash commands
\g or terminate with semicolon to execute query
\q to quit

TEST(REED)=> \d
List of relations
Name | Type | OWNER
---------------------------+-------+-------
ORDERS  | TABLE | ADMIN
(5 rows)

TEST(REED)=>\q