权限一览表
具体权限的作用详见官方文档
GRANT 和 REVOKE 允许的静态权限
| Privilege | Grant Table Column | Context |
| ALL [PRIVILEGES] | Synonym for “all privileges” | Server administration |
| ALTER |
| Tables |
| ALTER ROUTINE |
| Stored routines |
| CREATE |
| Databases, tables, or indexes |
| CREATE ROLE |
| Server administration |
| CREATE ROUTINE |
| Stored routines |
| CREATE TABLESPACE |
| Server administration |
| CREATE TEMPORARY TABLES |
| Tables |
| CREATE USER |
| Server administration |
| CREATE VIEW |
| Views |
| DELETE |
| Tables |
| DROP |
| Databases, tables, or views |
| DROP ROLE |
| Server administration |
| EVENT |
| Databases |
| EXECUTE |
| Stored routines |
| FILE |
| File access on server host |
| GRANT OPTION |
| Databases, tables, or stored routines |
| INDEX |
| Tables |
| INSERT |
| Tables or columns |
| LOCK TABLES |
| Databases |
| PROCESS |
| Server administration |
| PROXY | See table | Server administration |
| REFERENCES |
| Databases or tables |
| RELOAD |
| Server administration |
| REPLICATION CLIENT |
| Server administration |
| REPLICATION SLAVE |
| Server administration |
| SELECT |
| Tables or columns |
| SHOW DATABASES |
| Server administration |
| SHOW VIEW |
| Views |
| SHUTDOWN |
| Server administration |
| SUPER |
| Server administration |
| TRIGGER |
| Tables |
| UPDATE |
| Tables or columns |
| USAGE | Synonym for “no privileges” | Server administration |
GRANT 和 REVOKE 允许的动态权限
| Privilege | Context |
| APPLICATION_PASSWORD_ADMIN | Dual password administration |
| AUDIT_ABORT_EXEMPT | Allow queries blocked by audit log filter |
| AUDIT_ADMIN | Audit log administration |
| AUTHENTICATION_POLICY_ADMIN | Authentication administration |
| BACKUP_ADMIN | Backup administration |
| BINLOG_ADMIN | Backup and Replication administration |
| BINLOG_ENCRYPTION_ADMIN | Backup and Replication administration |
| CLONE_ADMIN | Clone administration |
| CONNECTION_ADMIN | Server administration |
| ENCRYPTION_KEY_ADMIN | Server administration |
| FIREWALL_ADMIN | Firewall administration |
| FIREWALL_EXEMPT | Firewall administration |
| FIREWALL_USER | Firewall administration |
| FLUSH_OPTIMIZER_COSTS | Server administration |
| FLUSH_STATUS | Server administration |
| FLUSH_TABLES | Server administration |
| FLUSH_USER_RESOURCES | Server administration |
| GROUP_REPLICATION_ADMIN | Replication administration |
| GROUP_REPLICATION_STREAM | Replication administration |
| INNODB_REDO_LOG_ARCHIVE | Redo log archiving administration |
| NDB_STORED_USER | NDB Cluster |
| PASSWORDLESS_USER_ADMIN | Authentication administration |
| PERSIST_RO_VARIABLES_ADMIN | Server administration |
| REPLICATION_APPLIER |
for a replication channel |
| REPLICATION_SLAVE_ADMIN | Replication administration |
| RESOURCE_GROUP_ADMIN | Resource group administration |
| RESOURCE_GROUP_USER | Resource group administration |
| ROLE_ADMIN | Server administration |
| SESSION_VARIABLES_ADMIN | Server administration |
| SET_USER_ID | Server administration |
| SHOW_ROUTINE | Server administration |
| SYSTEM_USER | Server administration |
| SYSTEM_VARIABLES_ADMIN | Server administration |
| TABLE_ENCRYPTION_ADMIN | Server administration |
| VERSION_TOKEN_ADMIN | Server administration |
| XA_RECOVER_ADMIN | Server administration |