UQL - User - Ultipa Graph

Change Password

Submit

Change Email

Submit

Change Nickname

Current Nickname:

Submit

Profile

Account ID:

Full Name:
Phone:
Company:
Company Email:
Country:
Language:

Change Password

Apply

You have no license application record.

Apply

Certificate	Issued at	Valid until	Serial No.	File

Serial No.	Valid until	File

Not having one? Apply now! >>>

Product	Created On	ID	Amount (USD)	Invoice

Product	Created On	ID	Amount (USD)	Invoice

No Invoice

Create Ultipa Account

Already have an Ultipa account? Sign in now!

Forgot Password

Reset Password

Back to sign in

User

Overview

A database user has access to the database system and can perform various querying or administering operations based on their assigned privileges.

Showing Users

To list all database users:

show().user()

Or retrieves a specific user, such as the one named root:

show().user("root")

Or retrieves the current logged-in user:

show().self()

It returns a table _user with the following fields:

Field	Description
`username`	Name of the user.
`create`	The date and time when the user was created.
`graphPrivileges`	Graph privileges granted to the user.
`systemPrivileges`	System privileges granted to the user.
`propertyPrivileges`	Property privileges granted to the user.
`policies`	Policies granted to the user.

Creating a User

The create().user().params() statement creates a database user.

Syntax

create().user("<username>", "<password>").params({
  graph_privileges: {
    "<graph>": ["<graphPriv>", "<graphPriv>", ...],
    ...
  }, 
  system_privileges: ["<systemPriv>", "<systemPriv>", ...], 
  property_privileges: {
    "node": {
      "<propertyPriv>": [
        ["<graph>", "<schema>", "<property>"],
        ...
      ],
      ...
    },
    "edge": {
      "<propertyPriv>": [
        ["<graph>", "<schema>", "<property>"],
        ...
      ],
      ...
    }
  },
  policies: ["<policyName>", "<policyName>", ...]
})

Method	Param	Description
`user()`	`<name>`	The unique name of the user. Naming conventions are: 2 to 64 characters. Begins with a letter. Allowed characters: letters (A-Z, a-z), numbers (0-9) and underscores (`_`).
`user()`	`<password>`	The password of the user, which must be between 6 to 64 characters in length.
`params()`	`graph_privileges`	Specifies graph privileges granted to the user; uses `"*"` to specify all graphsets.
	`system_privileges`	Specifies system privileges granted to the user.
	`property_privileges`	Specifies `node` and `edge` property privileges granted to the user; uses `["", "", "*"]` to specify all graphsets, all schemas, or all properties.
	`policies`	Specifies policies granted to the user.

Examples

To create a user called admin who has all graph and system privileges, and write privilege for all properties, but doesn't have any other policies:

create().user("admin", "U7MRDBFXd2Ab").params({
  graph_privileges: {"*":["READ","INSERT","UPSERT","UPDATE","DELETE","CREATE_SCHEMA","DROP_SCHEMA","ALTER_SCHEMA","SHOW_SCHEMA","RELOAD_SCHEMA","CREATE_PROPERTY","DROP_PROPERTY","ALTER_PROPERTY","SHOW_PROPERTY","CREATE_FULLTEXT","DROP_FULLTEXT","SHOW_FULLTEXT","CREATE_INDEX","DROP_INDEX","SHOW_INDEX","LTE","UFE","CLEAR_JOB","STOP_JOB","SHOW_JOB","ALGO","CREATE_PROJECT","SHOW_PROJECT","DROP_PROJECT","CREATE_HDC_GRAPH","SHOW_HDC_GRAPH","DROP_HDC_GRAPH","COMPACT_HDC_GRAPH","SHOW_VECTOR_INDEX","CREATE_VECTOR_INDEX","DROP_VECTOR_INDEX","SHOW_CONSTRAINT","CREATE_CONSTRAINT","DROP_CONSTRAINT"]}, 
  system_privileges: ["TRUNCATE","COMPACT","CREATE_GRAPH","SHOW_GRAPH","DROP_GRAPH","ALTER_GRAPH","TOP","KILL","STAT","SHOW_POLICY","CREATE_POLICY","DROP_POLICY","ALTER_POLICY","SHOW_USER","CREATE_USER","DROP_USER","ALTER_USER","SHOW_PRIVILEGE","SHOW_META","SHOW_SHARD","ADD_SHARD","DELETE_SHARD","REPLACE_SHARD","SHOW_HDC_SERVER","ADD_HDC_SERVER","DELETE_HDC_SERVER","LICENSE_UPDATE","LICENSE_DUMP","GRANT","REVOKE","SHOW_BACKUP","CREATE_BACKUP","SHOW_VECTOR_SERVER","ADD_VECTOR_SERVER","DELETE_VECTOR_SERVER"],
  property_privileges: {
    "node": {"write": [["*", "*", "*"]]},
    "edge": {"write": [["*", "*", "*"]]}
  }
})

To create a user called johndoe that has:

Graph privileges: UPDATE for all graphsets
System privileges: SHOW_POLICY, ALTER_GRAPH
Property privileges:
- Node properties: read all node properties
- Edge properties:
  - write edge properties value and time in the graphset Tax
- deny (Do not allow read and write) edge property score of the schema rate in the graphset miniCircle
Policies: manager

create().user("johndoe", "mHMUUjQWG46z").params({
  graph_privileges: {"*": ["UPDATE"]}, 
  system_privileges: ["SHOW_POLICY", "ALTER_GRAPH"],
  property_privileges: {
    "node": {
      "read": [
        ["*", "*", "*"]
      ]
    },
    "edge": {
      "write": [
        ["Tax", "*", "value"],
        ["Tax", "*", "time"]
      ],
      "deny": [
        ["miniCircle", "rates", "score"]
      ]
    }
  },
  policies: ["manager"]
})

Altering a User

You can alter the password, the privileges and policies of a user using the alter().user().set() statement. Note that only the mentioned items will be updated, others remain unchanged.

Syntax

alter().user("<username>").set({
  password: "<password>",
  graph_privileges: {
    "<graph>": ["<graphPriv>", "<graphPriv>", ...],
    ...
  }, 
  system_privileges: ["<systemPriv>", "<systemPriv>", ...], 
  property_privileges: {
    "node": {
      "<propertyPriv>": [
        ["<graph>", "<schema>", "<property>"],
        ...
      ],
      ...
    },
    "edge": {
      "<propertyPriv>": [
        ["<graph>", "<schema>", "<property>"],
        ...
      ],
      ...
    }
  },
  policies: ["<policyName>", "<policyName>", ...]
})

Method	Param	Description
`user()`	`<username>`	Name of the user.
`set()`	`<password>`	Specifies new password for the user, which must be between 6 to 64 characters in length.
	`graph_privileges`	Specifies new graph privileges for the user; uses `"*"` to specify all graphsets.
	`system_privileges`	Specifies new system privileges for the user.
	`property_privileges`	Specifies new `node` and `edge` property privileges for the user; uses `["", "", "*"]` to specify all graphsets, all schemas, or all properties.
	`policies`	Specifies new policies for the user.

Examples

To modify user admin's password while keeping all privileges and policies unchanged:

alter().user("admin").set({password: "zdcsQ7QFaCCE"})

To modify user johndoe's graph and property privileges, and policies, while keeping password and system privileges unchanged:

alter().user("johndoe").set({
  graph_privileges: {"*": ["UPDATE", "DELETE"]},
  property_privileges: {
    "node": {
      "write": [["miniCircle","*","*"]]
    },
    "edge": {
      "write": [["miniCircle","*","*"]]
    }
  },
  policies: ["sales"]
})

Granting to a User

You can grant additional privileges and policies to a user using the grant().user().params() statement. Note that the existing privileges and policies the user has remain unchanged.

Syntax

grant().user("<userName>").params({
  graph_privileges: {
    "<graph>": ["<graphPriv>", "<graphPriv>", ...],
    ...
  }, 
  system_privileges: ["<systemPriv>", "<systemPriv>", ...], 
  property_privileges: {
    "node": {
      "<propertyPriv>": [
        ["<graph>", "<schema>", "<property>"],
        ...
      ],
      ...
    },
    "edge": {
      "<propertyPriv>": [
        ["<graph>", "<schema>", "<property>"],
        ...
      ],
      ...
    }
  },
  policies: ["<policyName>", "<policyName>", ...]
})

Method	Param	Description
`user()`	`<userName>`	Name of the user.
`params()`	`graph_privileges`	Specifies additional graph privileges to grant to the user; uses `"*"` to specify all graphsets.
	`system_privileges`	Specifies additional system privileges to grant to the user.
	`property_privileges`	Specifies additional `node` and `edge` property privileges to grant to the user; uses `["", "", "*"]` to specify all graphsets, all schemas, and all properties.
	`policies`	Specifies additional policies to grant to the user.

Examples

To grant the graph privileges CREATE_SCHEMA and DROP_SCHEMA of the graphset Tax, and system privilege ADD_HDC_SERVER to the user ultipaUsr:

grant().user("ultipaUsr").params({
  graph_privileges: {"Tax": ["CREATE_SCHEMA", "DROP_SCHEMA"]}, 
  system_privileges: ["ADD_HDC_SERVER"]
})

Revoking from a User

You can revoke specified privileges and policies from a user using the revoke().user().params() statement.

Syntax

revoke().user("<userName>").params({
  graph_privileges: {
    "<graph>": ["<graphPriv>", "<graphPriv>", ...],
    ...
  }, 
  system_privileges: ["<systemPriv>", "<systemPriv>", ...], 
  property_privileges: {
    "node": {
      "<propertyPriv>": [
        ["<graph>", "<schema>", "<property>"],
        ...
      ],
      ...
    },
    "edge": {
      "<propertyPriv>": [
        ["<graph>", "<schema>", "<property>"],
        ...
      ],
      ...
    }
  },
  policies: ["<policyName>", "<policyName>", ...]
})

Method	Param	Description
`user()`	`<userName>`	Name of the user.
`params()`	`graph_privileges`	Specifies graph privileges to revoke from the user; uses `"*"` to specify all graphsets.
	`system_privileges`	Specifies system privileges to revoke from the user.
	`property_privileges`	Specifies `node` and `edge` property privileges to revoke from the user; uses `["", "", "*"]` to specify all graphsets, all schemas, or all properties.
	`policies`	Specifies policies to revoke from the user.

Examples

To revoke the graph privileges CREATE_SCHEMA and DROP_SCHEMA of the graphset Tax, and system privilege ADD_HDC_SERVER from the user ultipaUsr:

revoke().user("ultipaUsr").params({
  graph_privileges: {"Tax": ["CREATE_SCHEMA", "DROP_SCHEMA"]}, 
  system_privileges: ["ADD_HDC_SERVER"]
})

Dropping a User

You can drop a user using the drop().user() statement.

To drop the user johndoe:

drop().user("johndoe")

ID
Product
Status
Cores
Applied Validity Period(days)
Effective Date
Excpired Date
Mac Address
Apply Comment
Review Comment