Users & Roles Commands

Use ALTER DEFAULT PRIVILEGES to auto-grant permissions on future tables, not just existing ones.

Create group roles (NOLOGIN) like 'readonly' or 'readwrite', then grant them to user roles for cleaner permission management.

Always GRANT USAGE ON SCHEMA before table-level grants, or users won't see the tables.

Cannot drop a user that owns objects. Use REASSIGN OWNED BY first, then DROP OWNED BY, then DROP USER.

Avoid granting SUPERUSER in production. Use specific privileges instead for least-privilege access.