Release Notes
- v3.1
- v3.0
- v2.5
- v2.4
- v2.3
- v2.2
- v2.1
- v2.0
- v1.19

StarRocks
Introduction to StarRocks
Quick Start
Deployment
- Deployment overview
- Prepare
- Deploy
  - Deploy shared-nothing StarRocks
    - Deploy StarRocks manually
    - Deploy on Kubernetes
      - Deploy StarRocks with Operator
      - Deploy StarRocks with Helm
    - Deploy StarRocks on AWS
  - Deploy and use shared-data StarRocks
- Manage
Table Design
Data Loading
Data Unloading
Query Data Lakes
Query Acceleration
- Gather CBO statistics
- Synchronous materialized views
- Asynchronous materialized views
- Colocate Join
- Lateral Join
- Query Cache
- Index
  - Bitmap indexing
  - Bloom filter indexing
- Computing the Number of Distinct Values
  - Use Bitmap for exact count distinct
  - Use HLL for approximate count distinct
- Sorted streaming aggregate
Integrations
Administration
- Management
- Data recovery
- User Privilege and Authentication
- Performance Tuning
Reference
- SQL Reference
- Function Reference
  - Function list
  - Java UDFs
  - Window functions
  - Lambda expression
  - Aggregate Functions
    - any_value
    - approx_count_distinct
    - array_agg
    - avg
    - bitmap
    - bitmap_agg
    - count
    - corr
    - covar_pop
    - covar_samp
    - group_concat
    - grouping
    - grouping_id
    - hll_empty
    - hll_hash
    - hll_raw_agg
    - hll_union
    - hll_union_agg
    - max
    - max_by
    - min
    - min_by
    - multi_distinct_sum
    - multi_distinct_count
    - percentile_approx
    - percentile_cont
    - percentile_disc
    - retention
    - stddev
    - stddev_samp
    - sum
    - variance, variance_pop, var_pop
    - var_samp
    - window_funnel
  - Array Functions
    - all_match
    - any_match
    - array_agg
    - array_append
    - array_avg
    - array_concat
    - array_contains
    - array_contains_all
    - array_cum_sum
    - array_difference
    - array_distinct
    - array_filter
    - array_generate
    - array_intersect
    - array_join
    - array_length
    - array_map
    - array_max
    - array_min
    - array_position
    - array_remove
    - array_slice
    - array_sort
    - array_sortby
    - array_sum
    - arrays_overlap
    - array_to_bitmap
    - cardinality
    - element_at
    - reverse
    - unnest
  - Bit Functions
    - bitand
    - bitnot
    - bitor
    - bitxor
    - bit_shift_left
    - bit_shift_right
    - bit_shift_right_logical
  - Bitmap Functions
    - base64_to_bitmap
    - bitmap_agg
    - bitmap_and
    - bitmap_andnot
    - bitmap_contains
    - bitmap_count
    - bitmap_from_string
    - bitmap_empty
    - bitmap_has_any
    - bitmap_hash
    - bitmap_intersect
    - bitmap_max
    - bitmap_min
    - bitmap_or
    - bitmap_remove
    - bitmap_subset_in_range
    - bitmap_subset_limit
    - bitmap_to_array
    - bitmap_to_base64
    - bitmap_to_string
    - bitmap_union
    - bitmap_union_count
    - bitmap_union_int
    - bitmap_xor
    - intersect_count
    - sub_bitmap
    - to_bitmap
  - JSON Functions
    - Overview of JSON functions and operators
    - JSON operators
    - JSON constructor functions
    - JSON query and processing functions
  - Map Functions
    - cardinality
    - distinct_map_keys
    - element_at
    - map_apply
    - map_concat
    - map_filter
    - map_from_arrays
    - map_keys
    - map_size
    - map_values
    - transform_keys
    - transform_values
  - Binary Functions
    - to_binary
    - from_binary
  - Conditional Functions
    - case
    - coalesce
    - if
    - ifnull
    - nullif
  - Cryptographic Functions
    - aes_encrypt
    - aes_decrypt
    - base64_decode_binary
    - base64_decode_string
    - from_base64
    - md5
    - md5sum
    - md5sum_numeric
    - sha2
    - sm3
    - to_base64
  - Date Functions
    - add_months
    - adddate
    - convert_tz
    - current_date
    - current_time
    - current_timestamp
    - date
    - date_add
    - date_diff
    - date_format
    - date_slice
    - date_sub, subdate
    - date_trunc
    - datediff
    - day
    - dayname
    - dayofmonth
    - dayofweek
    - dayofyear
    - days_add
    - days_diff
    - days_sub
    - from_days
    - from_unixtime
    - hour
    - hours_add
    - hours_diff
    - hours_sub
    - last_day
    - makedate
    - microseconds_add
    - microseconds_sub
    - minute
    - minutes_add
    - minutes_diff
    - minutes_sub
    - month
    - monthname
    - months_add
    - months_diff
    - months_sub
    - next_day
    - now
    - previous_day
    - quarter
    - second
    - seconds_add
    - seconds_diff
    - seconds_sub
    - str_to_date
    - str2date
    - time_slice
    - time_to_sec
    - timediff
    - timestamp
    - timestampadd
    - timestampdiff
    - to_date
    - to_days
    - unix_timestamp
    - utc_timestamp
    - week
    - week_iso
    - weekofyear
    - weeks_add
    - day_of_week_iso
    - weeks_diff
    - weeks_sub
    - year
    - years_add
    - years_diff
    - years_sub
  - Geographic Functions
    - st_astext
    - st_circle
    - st_contains
    - st_distance_sphere
    - st_geometryfromtext
    - st_linefromtext
    - st_point
    - st_polygon
    - st_x
    - st_y
  - Math Functions
    - abs
    - acos
    - asin
    - atan
    - atan2
    - bin
    - ceil
    - ceiling
    - conv
    - cos
    - cosh
    - cosine_similarity
    - cosine_similarity_norm
    - cot
    - degrees
    - divide
    - e
    - exp
    - floor
    - fmod
    - greatest
    - least
    - ln
    - log
    - log2
    - log10
    - mod
    - multiply
    - negative
    - pi
    - pmod
    - positive
    - pow
    - radians
    - rand
    - round
    - sign
    - sin
    - sinh
    - sqrt
    - square
    - tan
    - tanh
    - truncate
  - String Functions
    - append_trailing_char_if_absent
    - ascii
    - char
    - char_length
    - character_length
    - concat
    - concat_ws
    - ends_with
    - find_in_set
    - group_concat
    - hex
    - hex_decode_binary
    - hex_decode_string
    - instr
    - lcase
    - left
    - length
    - locate
    - lower
    - lpad
    - ltrim
    - money_format
    - null_or_empty
    - parse_url
    - repeat
    - replace
    - reverse
    - right
    - rpad
    - rtrim
    - space
    - split
    - split_part
    - starts_with
    - strleft
    - strright
    - str_to_map
    - substring
    - trim
    - ucase
    - unhex
    - upper
    - url_decode
    - url_encode
  - Pattern Matching Functions
    - like
    - regexp
    - regexp_extract
    - regexp_extract_all
    - regexp_replace
  - Percentile Functions
    - percentile_approx_raw
    - percentile_empty
    - percentile_hash
    - percentile_union
  - Scalar Functions
    - hll_cardinality
  - Struct Functions
    - named_struct
    - row
  - Table Functions
    - files
    - generate_series
    - json_each
    - unnest
  - Utility Functions
    - catalog
    - current_role
    - current_version
    - database
    - host_name
    - isnull
    - isnotnull
    - last_query_id
    - sleep
    - uuid
    - uuid_numeric
    - version
  - cast function
  - hash function
- AUTO_INCREMENT
- Generated columns
- System variables
- User-defined variables
- Error code
- System limits
- AWS IAM policies
FAQ
- Deploy
- Data Migration
  - Data Loading
  - Data Unloading
- Privilege
- Data lake
- SQL
- query_dump
- Other FAQs
Benchmark
- SSB Benchmark
- TPC-H Benchmark
Ecosystem Release Notes

Developers
- Contribute to StarRocks
- Code Style Guides
  - protobuf style guides
  - thrift style guides
- Use the debuginfo file for debugging
- Development Environment
- Trace Tools
  - Trace

Edit

Privilege FAQ

Why is the error message "no permission" still reported even after the required role has been assigned to a user?

This error may happen if the role is not activated. You can run select current_role(); to query the roles that have been activated for the user in the current session. If the required role is not activated, run SET ROLE to activate this role and perform operations using this role.

If you want roles to be automatically activated upon login, the user_admin role can run SET DEFAULT ROLE or ALTER USER DEFAULT ROLE to set a default role for each user. After the default role is set, it will be automatically activated when the user logs in.

If you want all the assigned roles of all users to be automatically activated upon login, you can run the following command. This operation requires the OPERATE permission at the System level.

SET GLOBAL activate_all_roles_on_login = TRUE;

However, we recommend that you follow the principle of "least privilege" by setting default roles with limited privileges to prevent potential risks. For example:

For common users, you can set the read_only role that has only the SELECT privilege as the default role, while avoiding setting roles with privileges like ALTER, DROP, and INSERT as default roles.
For administrators, you can set the db_admin role as the default role, while avoiding setting the node_admin role, which has the privilege to add and drop nodes, as the default role.

This approach helps ensure that users are assigned roles with appropriate permissions, reducing the risk of unintended operations.

You can run GRANT to assign the required privileges or roles to users.

I have granted a user the privilege on all tables in a database (`GRANT ALL ON ALL TABLES IN DATABASE db TO user;`), but the user still cannot create tables in the database. Why?

Creating tables within a database requires the database-level CREATE TABLE privilege. You need to grant the privilege to the user.

GRANT CREATE TABLE ON DATABASE db TO user;

Edit

In this article

Privilege FAQ
- Why is the error message "no permission" still reported even after the required role has been assigned to a user?
- I have granted a user the privilege on all tables in a database (GRANT ALL ON ALL TABLES IN DATABASE db TO user;), but the user still cannot create tables in the database. Why?