I'm reading *Database System Concept*, in a chapter about **authorization**, the book first says that:
> A user who creates a view does not necessarily receive all privileges
> on that view. She receives only those privileges that provide no
> additional authorization beyond those that she already had."
but in a section immediately follows it, it says that:
>The creator of an object (relation/view/role) holds all privileges on the object, including
the privilege to grant privileges to others.
I don't know whether the creator of a view must holds all privileges on the view or not, because from first section I blockquoted, I think we **don't necessarily receive all privileges** on a view which we create, but from second section, it indicates the creator indeed **holds all privileges** on the view.
Asked by Kaiyu Yang
(13 rep)
Nov 4, 2021, 11:45 AM