SELECT 
    usename AS username,
    usesuper AS is_superuser,
    usecreatedb AS can_create_db,
    userepl AS can_replicate,
    usebypassrls AS can_bypass_rls,
    valuntil AS password_expires
FROM pg_user
WHERE usename = 'your_username'; -- 替換為要查詢的用戶名

+----------+--------------+---------------+---------------+----------------+------------------+
| username | is_superuser | can_create_db | can_replicate | can_bypass_rls | password_expires |
+----------+--------------+---------------+---------------+----------------+------------------+
| postgres | t            | t             | t             | t              |                  |
+----------+--------------+---------------+---------------+----------------+------------------+

+---------------+----------+-------------+----------+---------+--------------+----------+----------+-----------+
|    usename    | usesysid | usecreatedb | usesuper | userepl | usebypassrls |  passwd  | valuntil | useconfig |
+---------------+----------+-------------+----------+---------+--------------+----------+----------+-----------+
| postgres      |       10 | t           | t        | t       | t            | ******** |          |           |
| readonly_user |    24600 | f           | f        | f       | f            | ******** |          |           |
+---------------+----------+-------------+----------+---------+--------------+----------+----------+-----------+

SELECT 
    datname AS database,
    datacl AS privileges
FROM pg_database
WHERE datname NOT IN ('template0', 'template1')
ORDER BY datname;

+----------+---------------------------------------------------------------+
| database |                          privileges                           |
+----------+---------------------------------------------------------------+
| postgres |                                                               |
| test_db  | {=Tc/postgres,postgres=CTc/postgres,readonly_user=c/postgres} |
+----------+---------------------------------------------------------------+

SELECT 
    nspname AS schema,
    nspacl AS privileges
FROM pg_namespace
WHERE nspname NOT LIKE 'pg_%' 
AND nspname != 'information_schema'
ORDER BY nspname;

+--------+-------------------------------------------------------------------------------------------------+
| schema |                                           privileges                                            |
+--------+-------------------------------------------------------------------------------------------------+
| public | {pg_database_owner=UC/pg_database_owner,=U/pg_database_owner,readonly_user=U/pg_database_owner} |
+--------+-------------------------------------------------------------------------------------------------+

SELECT 
    n.nspname AS schema,
    c.relname AS table_name,
    c.relkind AS type, -- 'r'=table, 'v'=view, 'm'=materialized view
    c.relacl AS privileges
FROM pg_class c
JOIN pg_namespace n ON n.oid = c.relnamespace
WHERE c.relkind IN ('r', 'v', 'm')
AND n.nspname NOT IN ('pg_catalog', 'information_schema')
ORDER BY n.nspname, c.relname;

+--------+-------------+------+------------------------------------------------------+
| schema | table_name  | type |                      privileges                      |
+--------+-------------+------+------------------------------------------------------+
| public | author      | r    | {postgres=arwdDxt/postgres,readonly_user=r/postgres} |
| public | class       | r    | {postgres=arwdDxt/postgres,readonly_user=r/postgres} |
| public | contacts    | r    | {postgres=arwdDxt/postgres,readonly_user=r/postgres} |
| public | duty        | r    | {postgres=arwdDxt/postgres,readonly_user=r/postgres} |
| public | ipdb1       | r    | {postgres=arwdDxt/postgres,readonly_user=r/postgres} |
| public | ipdb2       | r    | {postgres=arwdDxt/postgres,readonly_user=r/postgres} |
| public | order       | r    | {postgres=arwdDxt/postgres,readonly_user=r/postgres} |
| public | sample_data | r    | {postgres=arwdDxt/postgres,readonly_user=r/postgres} |
| public | student     | r    | {postgres=arwdDxt/postgres,readonly_user=r/postgres} |
| public | t           | r    | {postgres=arwdDxt/postgres,readonly_user=r/postgres} |
| public | t1          | r    | {postgres=arwdDxt/postgres,readonly_user=r/postgres} |
| public | t_date      | r    | {postgres=arwdDxt/postgres,readonly_user=r/postgres} |
| public | test        | r    | {postgres=arwdDxt/postgres,readonly_user=r/postgres} |
| public | testtab01   | r    | {postgres=arwdDxt/postgres,readonly_user=r/postgres} |
| public | testtab05   | r    | {postgres=arwdDxt/postgres,readonly_user=r/postgres} |
| public | testtab08   | r    | {postgres=arwdDxt/postgres,readonly_user=r/postgres} |
+--------+-------------+------+------------------------------------------------------+

SELECT 
    n.nspname AS schema,
    c.relname AS table_name,
    a.attname AS column_name,
    a.attacl AS privileges
FROM pg_attribute a
JOIN pg_class c ON a.attrelid = c.oid
JOIN pg_namespace n ON n.oid = c.relnamespace
WHERE a.attnum > 0 
AND NOT a.attisdropped
AND a.attacl IS NOT NULL
ORDER BY n.nspname, c.relname, a.attnum;

+------------+-----------------+------------------+---------------+
|   schema   |   table_name    |   column_name    |  privileges   |
+------------+-----------------+------------------+---------------+
| pg_catalog | pg_subscription | oid              | {=r/postgres} |
| pg_catalog | pg_subscription | subdbid          | {=r/postgres} |
| pg_catalog | pg_subscription | subskiplsn       | {=r/postgres} |
| pg_catalog | pg_subscription | subname          | {=r/postgres} |
| pg_catalog | pg_subscription | subowner         | {=r/postgres} |
| pg_catalog | pg_subscription | subenabled       | {=r/postgres} |
| pg_catalog | pg_subscription | subbinary        | {=r/postgres} |
| pg_catalog | pg_subscription | substream        | {=r/postgres} |
| pg_catalog | pg_subscription | subtwophasestate | {=r/postgres} |
| pg_catalog | pg_subscription | subdisableonerr  | {=r/postgres} |
| pg_catalog | pg_subscription | subslotname      | {=r/postgres} |
| pg_catalog | pg_subscription | subsynccommit    | {=r/postgres} |
| pg_catalog | pg_subscription | subpublications  | {=r/postgres} |
+------------+-----------------+------------------+---------------+

SELECT 
    n.nspname AS schema,
    p.proname AS function_name,
    p.proacl AS privileges
FROM pg_proc p
JOIN pg_namespace n ON n.oid = p.pronamespace
WHERE n.nspname NOT IN ('pg_catalog', 'information_schema')
ORDER BY n.nspname, p.proname;

+--------+----------------+------------+
| schema | function_name  | privileges |
+--------+----------------+------------+
| public | inetmultirange |            |
| public | inetmultirange |            |
| public | inetmultirange |            |
| public | inetrange      |            |
| public | inetrange      |            |
+--------+----------------+------------+

SELECT 
    n.nspname AS schema,
    c.relname AS sequence_name,
    c.relacl AS privileges
FROM pg_class c
JOIN pg_namespace n ON n.oid = c.relnamespace
WHERE c.relkind = 'S' -- 序列
ORDER BY n.nspname, c.relname;

+--------+--------------------+--------------------------------------------------+
| schema |   sequence_name    |                    privileges                    |
+--------+--------------------+--------------------------------------------------+
| public | sample_data_id_seq | {postgres=rwU/postgres,readonly_user=U/postgres} |
+--------+--------------------+--------------------------------------------------+

SELECT 
    grantee,
    table_schema,
    table_name,
    privilege_type
FROM information_schema.role_table_grants
WHERE grantee = 'your_username' -- 替換為要查詢的用戶名
ORDER BY table_schema, table_name;

+---------------+--------------------+---------------------------------------+----------------+
|    grantee    |    table_schema    |              table_name               | privilege_type |
+---------------+--------------------+---------------------------------------+----------------+
| postgres      | information_schema | _pg_foreign_data_wrappers             | INSERT         |
| postgres      | information_schema | _pg_foreign_data_wrappers             | TRIGGER        |
| postgres      | information_schema | _pg_foreign_data_wrappers             | REFERENCES     |
| postgres      | information_schema | _pg_foreign_data_wrappers             | TRUNCATE       |
| postgres      | information_schema | _pg_foreign_data_wrappers             | DELETE         |
| postgres      | information_schema | _pg_foreign_data_wrappers             | UPDATE         |
| postgres      | information_schema | _pg_foreign_data_wrappers             | SELECT         |

SELECT 
    rolname AS role_name,
    member,
    (SELECT rolname FROM pg_roles WHERE oid = m.member) AS member_name,
    admin_option
FROM pg_roles r
JOIN pg_auth_members m ON r.oid = m.roleid
WHERE (SELECT rolname FROM pg_roles WHERE oid = m.member) = 'your_username';

+-----------+--------+-------------+--------------+
| role_name | member | member_name | admin_option |
+-----------+--------+-------------+--------------+
+-----------+--------+-------------+--------------+

WITH user_privs AS (
    -- 數(shù)據(jù)庫權(quán)限
    SELECT 
        'DATABASE' AS object_type,
        datname AS object_name,
        datacl AS privileges,
        datacl::text AS privileges_text  -- 轉(zhuǎn)換為文本
    FROM pg_database
    WHERE datname = current_database()
    UNION ALL
    -- 模式權(quán)限
    SELECT 
        'SCHEMA',
        nspname,
        nspacl AS privileges,
        nspacl::text AS privileges_text  -- 轉(zhuǎn)換為文本
    FROM pg_namespace
    WHERE nspname NOT LIKE 'pg_%' 
    UNION ALL
    -- 表權(quán)限
    SELECT 
        CASE relkind 
            WHEN 'r' THEN 'TABLE'
            WHEN 'v' THEN 'VIEW' 
            WHEN 'm' THEN 'MATERIALIZED VIEW'
        END,
        nspname || '.' || relname,
        relacl AS privileges,
        relacl::text AS privileges_text  -- 轉(zhuǎn)換為文本
    FROM pg_class c
    JOIN pg_namespace n ON n.oid = c.relnamespace
    WHERE relkind IN ('r', 'v', 'm')
    AND nspname NOT IN ('pg_catalog', 'information_schema')
)
SELECT 
    object_type,
    object_name,
    privileges
FROM user_privs
WHERE privileges_text LIKE '%postgres%'  -- 使用轉(zhuǎn)換后的文本字段進行LIKE匹配
   OR privileges IS NULL
ORDER BY object_type, object_name;

+-------------+--------------------+---------------------------------------------------------------+
| object_type |    object_name     |                          privileges                           |
+-------------+--------------------+---------------------------------------------------------------+
| DATABASE    | test_db            | {=Tc/postgres,postgres=CTc/postgres,readonly_user=c/postgres} |
| SCHEMA      | information_schema | {postgres=UC/postgres,=U/postgres}                            |
| TABLE       | public.author      | {postgres=arwdDxt/postgres,readonly_user=r/postgres}          |
| TABLE       | public.class       | {postgres=arwdDxt/postgres,readonly_user=r/postgres}          |
| TABLE       | public.contacts    | {postgres=arwdDxt/postgres,readonly_user=r/postgres}          |
| TABLE       | public.duty        | {postgres=arwdDxt/postgres,readonly_user=r/postgres}          |
| TABLE       | public.ipdb1       | {postgres=arwdDxt/postgres,readonly_user=r/postgres}          |
| TABLE       | public.ipdb2       | {postgres=arwdDxt/postgres,readonly_user=r/postgres}          |
| TABLE       | public.order       | {postgres=arwdDxt/postgres,readonly_user=r/postgres}          |
| TABLE       | public.sample_data | {postgres=arwdDxt/postgres,readonly_user=r/postgres}          |
| TABLE       | public.student     | {postgres=arwdDxt/postgres,readonly_user=r/postgres}          |
| TABLE       | public.t           | {postgres=arwdDxt/postgres,readonly_user=r/postgres}          |
| TABLE       | public.t1          | {postgres=arwdDxt/postgres,readonly_user=r/postgres}          |
| TABLE       | public.t_date      | {postgres=arwdDxt/postgres,readonly_user=r/postgres}          |
| TABLE       | public.test        | {postgres=arwdDxt/postgres,readonly_user=r/postgres}          |
| TABLE       | public.testtab01   | {postgres=arwdDxt/postgres,readonly_user=r/postgres}          |
| TABLE       | public.testtab05   | {postgres=arwdDxt/postgres,readonly_user=r/postgres}          |
| TABLE       | public.testtab08   | {postgres=arwdDxt/postgres,readonly_user=r/postgres}          |
+-------------+--------------------+---------------------------------------------------------------+

-- 檢查用戶對特定表的權(quán)限
SELECT 
    has_table_privilege('your_username', 'schema_name.table_name', 'SELECT') AS can_select,
    has_table_privilege('your_username', 'schema_name.table_name', 'INSERT') AS can_insert,
    has_table_privilege('your_username', 'schema_name.table_name', 'UPDATE') AS can_update,
    has_table_privilege('your_username', 'schema_name.table_name', 'DELETE') AS can_delete;

 SELECT 
has_table_privilege('readonly_user', 'public.t1', 'SELECT') AS can_select,
has_table_privilege('readonly_user', 'public.t1', 'INSERT') AS can_insert,
has_table_privilege('readonly_user', 'public.t1', 'UPDATE') AS can_update,
has_table_privilege('readonly_user', 'public.t1', 'DELETE') AS can_delete;
 can_select | can_insert | can_update | can_delete 
------------+------------+------------+------------
 t          | f          | f          | f
(1 row)

-- 查看當前用戶在所有表上的權(quán)限
SELECT * FROM information_schema.table_privileges;

SELECT has_database_privilege('username', 'databasename', 'connect');
SELECT has_schema_privilege('username', 'schemaname', 'usage');
SELECT has_table_privilege('username', 'tablename', 'select');

   SELECT has_database_privilege('readonly_user', 'test_db', 'connect');
 has_database_privilege 
------------------------
 t
(1 row)
test_db=# SELECT has_schema_privilege('readonly_user', 'public', 'usage');
 has_schema_privilege 
----------------------
 t
(1 row)
test_db=# SELECT has_table_privilege('readonly_user', 't1', 'select');
 has_table_privilege 
---------------------
 t
(1 row)