50.72. pg_roles

The view pg_roles provides access to information about database roles. This is simply a publicly readable view of pg_authid that blanks out the password field.

This view explicitly exposes the OID column of the underlying table, since that is needed to do joins to other catalogs.

Table 50-73. pg_roles Columns

NameTypeReferencesDescription
rolnamename Role name
rolsuperbool Role has superuser privileges
rolinheritbool Role automatically inherits privileges of roles it is a member of
rolcreaterolebool Role can create more roles
rolcreatedbbool Role can create databases
rolcanloginbool  Role can log in. That is, this role can be given as the initial session authorization identifier
rolreplicationbool  Role is a replication role. A replication role can initiate replication connections and create and drop replication slots.
rolconnlimitint4  For roles that can log in, this sets maximum number of concurrent connections this role can make. -1 means no limit.
rolpasswordtext Not the password (always reads as ********)
rolvaliduntiltimestamptz Password expiry time (only used for password authentication); null if no expiration
rolbypassrlsbool  Role bypasses every row level security policy, see Section 5.7 for more information.
rolconfigtext[] Role-specific defaults for run-time configuration variables
oidoidpg_authid.oidID of role