Authorization
Authorization refers to any sort of access control mechanism. In the context of SQL Server, it starts at the server scope or database scope for contained users. For example, a user may have access to read one set of tables and to read-write another set of tables.
The authorization is done by adding the user to the relevant server-level or database-level roles.
Roles have a set of permissions applied to them; for example, the db_datareader database-level role allows users to read tables from a database.
Let's look at server-level administrative roles available with SQL Database.
Server-level administrative roles
There are two server-level administrative roles that reside in the master database: dbcreators and loginmanagers for SQL Database. Server roles are not supported for Azure AD admin or Azure AD users at the time of writing this book.
dbcreators
Members of database creators (dbmanager) are allowed to create new SQL databases. To create...
