Cypher Cheat Sheet

Find all nodes and return all nodes.

A MATCH with an AND expression for the node label returns the nodes that contains both the specified labels.

A MATCH with an OR expression for the node label returns the nodes that contains either of the the specified labels.

A MATCH with a NOT expression for the node label returns the nodes that does not contain the specified label.

A MATCH with a WILDCARD expression for the node label returns the nodes that contains any label.

A MATCH with a nesting of label expressions for the node label returns the nodes for which the full expression is true.

Node patterns can contain labels and properties.

Any pattern can be used in MATCH.

Patterns with node properties can be used in MATCH .

A MATCH with an OR expression for the relationship type returns the relationships that contains either of the specified types.

A MATCH with a NOT expression for the relationship type returns the relationships that does not contain the specified type.

A MATCH with a nesting of relationship type expressions for the relationship type returns the nodes for which the full expression is true.

Assign a path to p.

An OPTIONAL MATCH matches patterns against the graph database, just like a MATCH does. The difference is that if no matches are found, OPTIONAL MATCH will use a null for missing parts of the pattern.

MATCH should be used to find the the entities that must be present in the pattern. OPTIONAL MATCH should be used to find the entities that may not be present in the pattern.

WHERE can appear in a MATCH or OPTIONAL MATCH clause. It can also filter the results of a WITH clause.

A label expression can be used as a predicate in the WHERE clause.

A relationship type expression can be used as a predicate in the WHERE clause.

WHERE can appear inside a MATCH clause.

WHERE can appear inside a pattern comprehension statement.

A relationship type expression can be used as a predicate in a WHERE clause.

Relationship pattern predicates can be used inside pattern comprehension.

Return the value of all variables.

Use alias for result column name.

Return unique rows.

Sort the result. The default order is ASCENDING.

Sort the result in DESCENDING order.

Skip the 10 first rows, for the result set.

Limit the number of rows to a maximum of 10, for the result set.

The number of matching rows. See aggregating functions for more.

A label expression can be used in the WITH or RETURN statement.

A relationship type expression can be used as a predicate in the WITH or RETURN statement.

The WITH syntax is similar to RETURN. It separates query parts explicitly, allowing users to declare which variables to carry over to the next part of the query.

Return the distinct union of all query results. Result column types and names have to match.

Return the union of all query results, including duplicated rows.

Create a node with the given label and properties.

Create a node with the given label and properties.

Create a relationship with the given relationship type and direction; bind a variable r to it.

Create a relationship with the given type, direction, and properties.

Update or create a property.

Update or create several properties.

Set all properties. This will remove any existing properties.

Using the empty map ({}), removes any existing properties.

Add and update properties, while keeping existing ones.

Add a label to a node. This example adds the label Person to a node.

Match a pattern or create it if it does not exist. Use ON CREATE and ON MATCH for conditional updates.

MERGE finds or creates a relationship between the nodes.

MERGE finds or creates paths attached to the node.

Delete a relationship.

Delete all relationships.

Delete a node and all relationships connected to it.

Delete a node and a relationship. An error will be thrown if the given node is attached to more than one relationship.

Delete a relationship and return the number of relationships for each node after the deletion.

Delete all nodes and relationships from the database.

Remove a label from a node.

Remove a property from a node.

REMOVE cannot be used to remove all existing properties from a node or relationship. All existing properties can be removed from a node or relationship by using the SET clause with the property replacement operator (=) and an empty map ({}) as the right operand.

Return THEN value from the first WHEN predicate evaluating to true. Predicates are evaluated in order.

A relationship type expression and a label expression can be used in a CASE expression.

Standalone call to the procedure db.labels to list all labels used in the database. Note that required procedure arguments are given explicitly in brackets after the procedure name.

Standalone calls may use YIELD * to return all columns.

Standalone calls may omit YIELD and also provide arguments implicitly via statement parameters, e.g. a standalone call requiring one argument input may be run by passing the parameter map {input: 'foo'}.

Calls the built-in procedure db.labels inside a larger query to count all labels used in the database. Calls inside a larger query always requires passing arguments and naming results explicitly with YIELD.

Run a mutating operation for each element in a list.

Run a mutating operation for each relationship in a path.

Load data from a CSV file and create nodes.

Load CSV data which has headers.

Use a different field terminator, not the default which is a comma (with no whitespace around it).

The file() function returns a string (the absolute path of the file that LOAD CSV is processing). Returns null if called outside of LOAD CSV context.

The linenumber function returns an integer (the line number that LOAD CSV is currently processing). Returns null if called outside of LOAD CSV context.

List all available functions, returns only the default outputs (name, category, and description).

List built-in functions, can also be filtered on ALL or USER-DEFINED .

Filter the available functions for the current user.

Filter the available functions for the specified user.

List all available procedures, returns only the default outputs (name, description, mode, and worksOnSystem).

List all available procedures.

List all procedures that can be executed by the current user and return only the name of the procedures.

List running transactions (within the instance), returns only the default outputs (database, transactionId, currentQueryId, connectionId, clientAddress, username, currentQuery, startTime, status, and elapsedTime).

List running transactions (within the instance).

List the running transaction (within the instance), with a specific transaction_id. As long as the transaction IDs evaluate to a string or a list of strings at runtime, they can be any expression.

Terminate a specific transaction, returns the outputs: transactionId, username, message.

Terminal transactions allow for YIELD clauses. As long as the transaction IDs evaluate to a string or a list of strings at runtime, they can be any expression.

List all transactions by the specified user and terminate them. Return the transaction IDs of the transactions that failed to terminate successfully.

Create a node for each map in the list and set the given properties.

With UNWIND, any list can be transformed back into individual rows. The example matches all names from a list of names.

Select myDatabase to execute query, or query part, against.

MATCH query executed against neo4j database.

This calls a subquery with two union parts. The result of the subquery can afterwards be post-processed. More information about the CALL subquery can be found here .

An EXISTS subquery can be used to find out if a specified pattern exists at least once in the data. Unlike CALL subqueries, variables introduced by the outside scope can be used in the EXISTS subqueries without importing them.

A COUNT subquery can be used to to count the number of results of the subquery exists at least once in the data. Unlike CALL subqueries, variables introduced by the outside scope can be used in COUNT subqueries without importing them.

General

Mathematical

Comparison

Boolean

String

List

Regular expression

String matching

Node with Person label.

Node with both Person and Swedish labels.

Node with the declared properties.

Matches relationships with the declared properties.

Relationship from n to m.

Relationship in any direction between n and m.

Node n labeled Person with relationship to m.

Relationship of type KNOWS from n to m.

Relationship of type KNOWS or of type LOVES from n to m.

Bind the relationship to variable r.

Variable length path of between 1 and 5 relationships from n to m.

Variable length path of any number of relationships from n to m. (See Performance section.)

A relationship of type KNOWS from a node n with label Person to a node m with label Person and the declared property.

Find a single shortest path.

Find all shortest paths.

Count the paths matching the pattern.

Create a node with label and property.

Matches or creates unique node(s) with the label and property.

Matches nodes labeled Person .

Checks the existence of the label Person on the node.

Matches nodes labeled Person with the given property name.

Add label(s) to a node.

The labels function returns the labels for the node.

Remove the label :Person from the node.

Neo4j only supports a subset of Cypher types for storage as singleton or array properties. Properties can be lists of numbers, strings, booleans, temporal, or spatial.

A map is not allowed as a property.

A list of maps are not allowed as a property.

Collections containing collections cannot be stored in properties.

Collections containing null values cannot be stored in properties.

Literal lists are declared in square brackets.

Literal lists are declared in square brackets.

Lists can be passed in as parameters.

Lists can be passed in as parameters.

range() creates a list of numbers (step is optional), other functions returning lists are: labels(), nodes(), and relationships().

The list of relationships comprising a variable length path can be returned using named paths and relationships().

List elements can be accessed with idx subscripts in square brackets. Invalid indexes return null.

Slices can be retrieved with intervals from start_idx to end_idx, each of which can be omitted or negative. Out of range elements are ignored.

Pattern comprehensions may be used to do a custom projection from a match directly into a list.

Map projections may be easily constructed from nodes, relationships and other map values.

Literal maps are declared in curly braces much like property maps. Lists are supported.

Map entries can be accessed by their keys. Invalid keys result in an error.

Access the property of a nested map.

Maps can be passed in as parameters and used either as a map or by accessing keys.

Nodes and relationships are returned as maps of their data.

Use comparison operators.

Use functions.

Use boolean operators to combine predicates.

Check for node labels.

Check if something is not null, e.g. that a property exists.

Either the property does not exist or the predicate is true.

Non-existing property returns null, which is not equal to anything.

Properties may also be accessed using a dynamically computed property name.

String matching that starts with the specified string.

String matching that ends with the specified string.

String matching that contains the specified string.

String matching that matches the specified regular expression. By prepending a regular expression with (?i), the whole expression becomes case-insensitive.

Ensure the pattern has at least one match.

Exclude matches to (n:Person)-[:KNOWS]→(m:Person) from the result.

Check if an element exists in a list.

Returns true if the predicate is true for all elements in the list.

Returns true if the predicate is true for at least one element in the list.

Returns true if the predicate is false for all elements in the list.

Returns true if the predicate is true for exactly one element in the list.

Return the number of elements in the list.

Return the first element of the list. Returns null for an empty list. Equivalent to the list indexing $list[0].

Return the last element of the list. Returns null for an empty list. Equivalent to the list indexing $list[-1].

Return a list containing all elements except for the first element. Equivalent to the list slice $list[1..]. In this case out-of-bound slices are truncated to an empty list [].

Return a list containing all elements in reversed order.

A list of the value of the expression for each element in the original list.

A filtered list of the elements where the predicate is true.

A list comprehension that filters a list and extracts the value of the expression for each element in that list.

Evaluate expression for each element in the list, accumulate the results.

The id function returns an integer (the internal ID of a node or relationship). Do not rely on the internal ID for your business domain; the internal ID can change between transactions. The id function will be removed in the next major release. It is recommended to use elementId instead.

The elementId function returns a node or relationship identifier, unique with a specific transaction and DBMS.

The properties function returns a map containing all the properties of a node or relationship.

The keys function returns a list of string representations for the property names of a node or relationship.

The keys function returns a list of string representations for the keys of a map.

The coalesce function returns the first non-null expression.

The timestamp function returns an integer; the time in milliseconds since midnight, January 1, 1970 UTC. and the current time.

The randomUUID function returns a string; a randomly-generated universally unique identifier (UUID).

The toInteger function returns an integer number if possible, for the given expression; otherwise it returns null. The function returns an error if provided with an expression that is not a string, integer, floating point, boolean, or null.

The toIntegerOrNull function returns an integer number if possible, for the given expression; otherwise it returns null.

The toFloat returns a floating point number if possible, for the given expression; otherwise it returns null. The function returns an error if provided with an expression that is not a string, integer, floating point, or null.

The toFloatOrNull returns a floating point number if possible, for the given expression; otherwise it returns null.

The toBoolean returns a boolean if possible, for the given expression; otherwise it returns null. The function returns an error if provided with an expression that is not a string, integer, boolean, or null.

The toBooleanOrNull returns a boolean if possible, for the given expression; otherwise it returns null.

The isEmpty returns a boolean; Check if a string has zero characters. Returns null for null.

The isEmpty returns a boolean; Check if a list has zero items. Returns null for null.

The isEmpty returns a boolean; Check if a map has zero keys. Returns null for null.

Return the number of relationships in the path.

Return the nodes in the path as a list.

Return the relationships in the path as a list.

Extract properties from the nodes in a path.

Return a point in a 2D cartesian coordinate system.

Returns a point in a 2D geographic coordinate system, with coordinates specified in decimal degrees.

Returns a point in a 3D cartesian coordinate system.

Returns a point in a 3D geographic coordinate system, with latitude and longitude in decimal degrees, and height in meters.

Returns a floating point number representing the linear distance between two points. The returned units will be the same as those of the point coordinates, and it will work for both 2D and 3D cartesian points.

Returns the geodesic distance between two points in meters. It can be used for 3D geographic points as well.

Returns a date parsed from a string.

Returns a time with no time zone.

Returns a time in a specified time zone.

Returns a datetime with no time zone.

Returns a datetime in the specified time zone.

Transforms 3360000 as a UNIX Epoch time into a normal datetime.

All of the temporal functions can also be called with a map of named components. This example returns a date from year, month and day components. Each function supports a different set of possible components.

Temporal types can be created by combining other types. This example creates a datetime from a date and a time.

Temporal types can be created by selecting from more complex types, as well as overriding individual components. This example creates a date by selecting from a datetime, as well as overriding the day component.

Accessors allow extracting components of temporal types.

Returns a duration of 1 year, 2 months, 10 days, 12 hours, 45 minutes and 30.25 seconds.

Returns a duration between two temporal instances.

Returns 1 year, 14 months, 10 days, 12 hours and 765 minutes.

Returns 1 year, 2 months, 10 days, 12 hours and 45 minutes.

Returns a date of 2016-02-02. It is also possible to subtract durations from temporal instances.

Returns a duration of 5 minutes. It is also possible to divide a duration by a number.

The absolute value.

Returns whether a number is NaN,a special floating point number defined in the Floating-Point Standard IEEE 754.

Returns a random number in the range from 0 (inclusive) to 1 (exclusive), [0,1). Returns a new value for each call. Also useful for selecting a subset or random ordering.

Return a random number in the range from 1 to 10.

Round to the nearest integer.

Round up to the nearest integer.

Round down to the nearest integer.

The square root.

0 if zero, -1 if negative, 1 if positive.

Trigonometric functions also include cos(), tan(), cot(), asin(), acos(), atan(), atan2(), and haversin(). All arguments for the trigonometric functions should be in radians, if not otherwise specified.

Converts radians into degrees; use radians() for the reverse, and pi() for π.

Logarithm base 10, natural logarithm, e to the power of the parameter, and the value of e.

String representation of the expression.

Replace all occurrences of search with replacement. All arguments must be expressions.

Get part of a string. The subLength argument is optional.

The first part of a string.

The last part of the string.

Trim all whitespace, or on the left side, or on the right side.

UPPERCASE and lowercase.

Split a string into a list of strings.

Reverse a string.

Calculate the number of characters in the string.

String representation of the relationship type.

Start node of the relationship.

End node of the relationship.

The internal ID of the relationship. Do not rely on the internal ID for your business domain; the internal ID can change between transactions.

The number of matching rows.

The number of non-null values.

All aggregating functions also take the DISTINCT operator, which removes duplicates from the values.

List from the values, ignores null.

Sum numerical values. Similar functions are avg(), min(), max().

Discrete percentile. Continuous percentile is percentileCont(). The percentile argument is from 0.0 to 1.0.

Standard deviation for a sample of a population. For an entire population use stDevP().

List all indexes, returns only the default outputs (id, name, state, populationPercent, type, entityType, labelsOrTypes, properties, indexProvider, and owningConstraint).

List all indexes. See Listing indexes.

List range indexes, can also be filtered on ALL, FULLTEXT, LOOKUP, POINT, and TEXT.

Drop the index named index_name, throws an error if the index does not exist.

Drop the index named index_name if it exists, does nothing if it does not exist.

Create a range index on relationships with type KNOWS and property since with the name index_name.

Create a range index on nodes with label Person and property surname with name index_name and the index provider range-1.0.

Create a composite range index with the name index_name on nodes with label Person and the properties name and age, throws an error if the index already exist.

Create a composite range index with the name index_name on nodes with label Person and the properties name and age if it does not already exist, does nothing if it did exist.

Create a token lookup index on nodes with any label.

Create a token lookup index on relationships with any relationship type.

Create a point index on nodes with label Person and property location with the name index_name and the given spatial.cartesian settings. The other index settings will have their default values.

Create a point index with the name index_name on relationships with the type STREET and property intersection.

Create a fulltext index on nodes with the name index_name and analyzer swedish. Fulltext indexes on nodes can only be used by from the procedure db.index.fulltext.queryNodes. The other index settings will have their default values.

Create a fulltext index on relationships with the name index_name and analyzer english. Fulltext indexes on relationships can only be used by from the procedure db.index.fulltext.queryRelationships. The other index settings will have their default values.

Create a text index on relationships with type KNOWS and property city. The property value type should be a string for the text index. Other value types are ignored by the text index.

An index can be automatically used for the equality comparison. Note that for example toLower(n.name) = $value will not use an index.

An index can automatically be used for the IN list checks.

A composite index can be automatically used for equality comparison of both properties. Note that there needs to be predicates on all properties of the composite index for it to be used.

Index usage can be enforced when Cypher uses a suboptimal index, or when more than one index should be used.

List all constraints, returns only the default outputs (id, name, type, entityType, labelsOrTypes, properties, and ownedIndex). Can also be filtered on UNIQUENESS, NODE EXISTENCE, RELATIONSHIP EXISTENCE, EXISTENCE, and NODE KEY. See Listing constraints type filters for more details.

List all constraints. See Listing constraints.

Drop the constraint with the name constraint_name, throws an error if the constraint does not exist.

Drop the constraint with the name constraint_name if it exists, does nothing if it does not exist.

Create a node property uniqueness constraint on the label Person and properties name and age. An error will be thrown if an attempt is made to create the same constraint twice. If any node with that label is updated or created with a name and age combination that already exists, the write operation will fail.

Create a node property uniqueness constraint on the label Person and property surname with the index provider range-1.0 for the accompanying index.

Create a relationship property existence constraint on the type LIKED and property when. If a relationship with that type is created without a when property, or if the property when is removed from an existing relationship with the type LIKED, the write operation will fail.

Create a node property existence constraint on the label Person and property name. If a node with that label is created without a name property, or if the name property on the existing node with the label Person is removed, the write operation will fail.

Create a node key constraint on the label Person and properties name and surname with the name constraint_name. If a node with that label is created without both the name and surname properties, or if the combination of the two is not unique, or if the name and/or surname properties on an existing node with the label Person is modified to violate these constraints, the write operation will fail.

Create a node key constraint on the label Person and properties name and age with the name constraint_name and given index provider for the accompanying range index.

List all databases in Neo4j DBMS and information about them, returns only the default outputs (name, type, aliases, access, address, role, writer, requestedStatus, currentStatus, statusMessage, default, home, and constituents).

List all databases in Neo4j DBMS and information about them.

List information about databases, filtered by name and currentStatus and further refined by conditions on these.

List information about the database database-name.

List information about the default database, for the Neo4j DBMS.

List information about the current users home database.

Delete the database database-name, if it exists. This command can delete both standard and composite databases.

Delete the database named composite-database-name. In case the given database name does not exist or is not composite, and error will be thrown.

Create a standard database named database-name if it does not already exist.

Create a standard database named database-name. If a database with that name exists, then the existing database is deleted and a new one created.

Create a standard database named topology-example in a cluster environment, to use 1 primary server and 0 secondary servers.

Create a composite database named composite-database-name.

Stop a database named database-name.

Start a database named database-name.

Modify a standard database named database-name to accept only read queries.

Modify a standard database named database-name to accept write and read queries.

Modify a standard database named topology-example in a cluster environment to use 1 primary server and 0 secondary servers.

Modify a standard database named topology-example in a cluster environment to use 1 primary servers and 0 secondary servers, and to only accept read queries.

List all database aliases in Neo4j DBMS and information about them, returns only the default outputs (name, database, location, url, and user).

List the database alias named database-alias and the information about it. Returns only the default outputs (name, database, location, url, and user).

List all database aliases in Neo4j DBMS and information about them.

Create a local alias named database-alias for the database named database-name.

Create or replace a local alias named database-alias for the database named database-name.

Database aliases can be given properties.

Create a remote alias named database-alias for the database named database-name.

Create a remote alias named alias-in-composite-name as a constituent alias in the composite database named composite-database-name for the database with name database-name.

Alter the alias named database-alias to target the database named database-name.

Alter the remote alias named remote-database-alias, set the username (user_name) and the password.

Update the properties for the database alias named database-alias.

Delete the alias named database-alias.

Display all servers running in the cluster, including servers that have yet to be enabled as well as dropped servers. Default outputs are: name, address, state, health, and hosting.

Make the server with the ID serverId an active member of the cluster.

Change the name of a server.

Only allow the specified server to host databases in primary mode.

Re-balance databases among the servers in the cluster.

Remove all databases from the specified server, adding them to other servers as needed. The specified server is not allowed to host any new databases.

Remove the specified server from the cluster.

List all users in Neo4j DBMS, returns only the default outputs (user, roles, passwordChangeRequired, suspended, and home).

List the currently logged-in user, returns only the default outputs (user, roles, passwordChangeRequired, suspended, and home).

List users that are suspended.

List users that must change their password at the next login.

Delete the specified user.

Create a new user and set the password. This password must be changed on the first login.

Rename the specified user.

Change the password of the logged-in user. The user will not be required to change this password on the next login.

Set a new password (a String) for a user. This user will not be required to change this password on the next login.

If the specified user exists, force this user to change the password on the next login.

Change the status to SUSPENDED, for the specified user.

Change the status to ACTIVE, for the specified user.

Set the home database for the specified user. The home database can either be a database or an alias.

Unset the home database for the specified user and fallback to the default database.

List all roles in the system, returns the output role.

List roles that contains a given string.

List all roles that are assigned to at least one user in the system.

List all roles that are assigned to at least one user in the system, and the users assigned to those roles. The returned outputs are role and member.

List all roles that are assigned to a $user.

Delete a role.

Create a role, unless it already exists.

Create a role, as a copy of the existing other_role_name.

Rename a role.

Assign roles to a user.

Remove the specified role from a user.

List all privileges in the system, and the roles that they are assigned to. Outputs returned are: access, action, resource, graph, segment, role, and immutable.

List all privileges in the system as Cypher commands, for example GRANT ACCESS ON DATABASE * TO `admin`. Returns only the default output (command).

List all privileges of the currently logged-in user, and the roles that they are assigned to. Outputs returned are: access, action, resource, graph, segment, role, immutable, and user.

List all privileges of the currently logged-in user, and the roles that they are assigned to as Cypher commands, for example GRANT ACCESS ON DATABASE * TO $role. Returns only the default output (command).

List all privileges assigned to each of the specified users (multiple users can be specified separated by commas n1, n2, n3), and the roles that they are assigned to. Outputs returned are: access, action, resource, graph, segment, role, immutable, and user.

List all privileges assigned to each of the specified users (multiple users can be specified separated by commas n1, n2, n3), as generic Cypher commands, for example GRANT ACCESS ON DATABASE * TO $role. Outputs returned are: command and immutable.

List all privileges assigned to each of the specified roles (multiple roles can be specified separated by commas r1, r2, r3). Outputs returned are: access, action, resource, graph, segment, role, and immutable.

List all privileges assigned to each of the specified roles (multiple roles can be specified separated by commas r1, r2, r3) as Cypher commands, for example GRANT ACCESS ON DATABASE * TO `admin`. Returns only the default output (command).

To remove a granted or denied privilege, prepend the privilege query with REVOKE and replace the TO with FROM.

Grant TRAVERSE privilege on all graphs and all relationships to the specified role.

Deny READ privilege on a specified property, on all relationships with a specified type in a specified graph, to the specified role.

Revoke READ privilege on a specified property in a specified graph from the specified role.

Grant MATCH privilege on all nodes and relationships with the specified label/type, on the home graph, to the specified role. This is semantically the same as having both TRAVERSE privilege and READ {*} privilege.

Grant ALL GRAPH PRIVILEGES privilege on a specified graph to the specified role.

Deny CREATE privilege on all nodes with a specified label in all graphs to the specified role.

Revoke DELETE privilege on all nodes and relationships in a specified graph from the specified role.

Grant SET LABEL privilege for the specified label on all graphs to the specified role.

Deny REMOVE LABEL privilege for all labels on a specified graph to the specified role.

Grant SET PROPERTY privilege on a specified property, on all relationships with a specified type in a specified graph, to the specified role.

Grant MERGE privilege on all properties, on all nodes with a specified label in all graphs, to the specified role.

Revoke WRITE privilege on all graphs from the specified role.

Revoke ACCESS privilege to access and run queries against the home database from the specified role.

Grant START privilege to start all databases to the specified role.

Deny STOP privilege to stop the home database to the specified role.

Grant CREATE INDEX privilege to create indexes on a specified database to the specified role.

Grant DROP INDEX privilege to drop indexes on a specified database to the specified role.

Grant SHOW INDEX privilege to list indexes on all databases to the specified role.

Grant CREATE CONSTRAINT privilege to create constraints on all databases to the specified role.

Grant DROP CONSTRAINT privilege to create constraints on all databases to the specified role.

Grant SHOW CONSTRAINT privilege to list constraints on a specified database to the specified role.

Grant CREATE NEW LABEL privilege to create new labels on all databases to the specified role.

Deny CREATE NEW TYPE privilege to create new relationship types on all databases to the specified role.

Grant CREATE NEW NAME privilege to create new property names on all databases to the specified role.

Grant SHOW TRANSACTION privilege to list transactions on all users on all databases to the specified role.

Grant SHOW TRANSACTION privilege to list transactions by the specified users on home database to the specified roles.

Grant TERMINATE TRANSACTION privilege to terminate transactions on all users on all databases to the specified role.

Deny IMPERSONATE privilege to impersonate the specified users (user_name1 and user_name2) to the specified role.

Revoke IMPERSONATE privilege to impersonate all users from the specified role.

Enables the specified role to execute all procedures.

Enables the specified role to use elevated privileges when executing all procedures.

Enables the specified role to execute procedures annotated with @Admin. The procedures are executed with elevated privileges.

Enables the specified role to execute all user defined functions.

Enables the specified role to use elevated privileges when executing all user defined functions.

Grant CREATE ROLE privilege to create roles to the specified role.

Grant RENAME ROLE privilege to rename roles to the specified role.

Deny DROP ROLE privilege to delete roles to the specified role.

Grant ASSIGN ROLE privilege to assign roles to users to the specified role.

Deny REMOVE ROLE privilege to remove roles from users to the specified role.

Grant SHOW ROLE privilege to list roles to the specified role.

Deny CREATE USER privilege to create users to the specified role.

Grant RENAME USER privilege to rename users to the specified role.

Deny SET PASSWORD privilege to alter a user password to the specified role.

Grant SET USER HOME DATABASE privilege to alter the home database of users to the specified role.

Grant SET USER STATUS privilege to alter user account status to the specified role.

Grant DROP USER privilege to delete users to the specified role.

Deny SHOW USER privilege to list users to the specified role.

Grant CREATE DATABASE privilege to create standard databases to the specified role.

Grant DROP DATABASE privilege to delete standard databases to the specified role.

Grant SET DATABASE ACCESS privilege to set database access mode for standard databases to the specified role.

Denies the specified role the privilege to create composite databases.

Revokes the granted and denied privileges to delete composite databases from the specified role.

Enables the specified role to show, enable, rename, alter, reallocate, deallocate, and drop servers.

Denies the specified role the privilege to show information about the serves.

Grant CREATE ALIAS privilege to create aliases to the specified role.

Grant DROP ALIAS privilege to delete aliases to the specified role.

Grant ALTER ALIAS privilege to alter aliases to the specified role.

Grant SHOW ALIAS privilege to list aliases to the specified role.

Grant CREATE ROLE privilege to create roles to the specified role.

Grant RENAME ROLE privilege to rename roles to the specified role.

Deny DROP ROLE privilege to delete roles to the specified role.

Grant ASSIGN ROLE privilege to assign roles to users to the specified role.

Deny REMOVE ROLE privilege to remove roles from users to the specified role.

Grant SHOW ROLE privilege to list roles to the specified role.

Grant ASSIGN PRIVILEGE privilege, allows the specified role to assign privileges for roles.

Grant REMOVE PRIVILEGE privilege, allows the specified role to remove privileges for roles.

Grant SHOW PRIVILEGE privilege to list privileges to the specified role.

Grant immutable TRAVERSE privilege on all graphs to the specified role.

Deny immutable START privilege to start all databases to the specified role.

Revoke immutable CREATE ROLE privilege from the specified role. When immutable is specified in conjunction with a REVOKE command, it will act as a filter and only remove the matching immutable privileges.