ALTER ROLE… IDENTIFIED BY v16
ALTER ROLE — Change the password associated with a database role.
A role without the
CREATEROLE privilege can use this command to change their own password. An unprivileged role must include the
REPLACE clause and their previous password if
NULL in their profile. When a non-superuser uses the
REPLACE clause, the server compares the password provided to the existing password and raises an error if the passwords don't match.
A database superuser can use this command to change the password associated with any role. If a superuser includes the
REPLACE clause, the clause is ignored. A non-matching value for the previous password doesn't throw an error.
If the role whose password is being changed has the
SUPERUSER attribute, then a superuser must issue this command. A role with the
CREATEROLE attribute can use this command to change the password associated with a role that isn't a superuser.
The name of the role whose password to alter.
The role’s new password.
The role’s previous password.
This example changes a role’s password: