Updated at July 17, 2026 02:08 PM
box.schema.user.passwd()
Sets a password for a currently logged in or a specified user:
- A currently logged-in user can change their password using
box.schema.user.passwd(password). - An administrator can change the password of another user with
box.schema.user.passwd(username, password).
Parameters:
-
username(string) — a username -
password(string) — a new password
Example:
box.schema.user.passwd('testuser', 'foobar')t.assert_equals(box.space._user.index.name:select { 'testuser' }[1][5]['chap-sha1'], 'm1ADQ7xS4pERcutSrlz0hHYExuU=')end)endg.test_grant_revoke_privileges_user = function(cg)cg.server:exec(function()box.schema.user.create('testuser', { password = 'foobar' })box.schema.user.grant('testuser', 'execute', 'universe')-- Grant privileges to the specified user --box.schema.user.grant('testuser', 'read', 'space', 'writers')box.schema.user.grant('testuser', 'read,write', 'space', 'books')-- End: Grant privileges to the specified user --box.session.su('testuser')local _, delete_writer_error = pcall(function()box.space.writers:delete(3)end)t.assert_equals(delete_writer_error:unpack().message, "Write access to space 'writers' is denied for user 'testuser'")box.session.su('admin')-- Revoke space reading --box.schema.user.revoke('testuser', 'write', 'space', 'books')-- End: Revoke space reading --box.session.su('testuser')local _, delete_book_error = pcall(function()box.space.books:delete(10)end)t.assert_equals(delete_book_error:unpack().message, "Write access to space 'books' is denied for user 'testuser'")box.session.su('admin')-- Revoke session --box.schema.user.revoke('testuser', 'session', 'universe')-- End: Revoke session --local _, change_user_error = pcall(function()box.session.su('testuser')end)t.assert_equals(change_user_error:unpack().message, "Session access to universe '' is denied for user 'testuser'")end)endg.test_user_dropped = function(cg)cg.server:exec(function()box.schema.user.create('testuser')-- Drop a user --box.schema.user.drop('testuser')-- End: Drop a user --t.assert_equals(box.schema.user.exists('testuser'), false)end)end
See also: access_control_users.