A role is a group of privileges. The privileges can be assigned to a role, and then the role can be granted to multiple users and roles. When adding or deleting a privilege from a role, all users and roles assigned that role automatically receive or lose that privilege. A user or role can have multiple roles. A role can have a password. The roles can help you manage multiple privileges assigned to multiple users.
To create a role, you must have the CREATE ROLE system privilege.
GRANT CREATE ROLE TO store; GRANT CREATE USER TO store WITH ADMIN OPTION;
You create a role using the CREATE ROLE statement. The default is to do both.
CREATE ROLE firstRole; CREATE ROLE secondRole IDENTIFIED by password; GRANT SELECT, INSERT, UPDATE, DELETE ON employee TO firstRole; GRANT SELECT, INSERT, UPDATE, DELETE ON products TO firstRole; GRANT firstRole TO secondRole;