and override global permissions.
[[File:perms.png|none|thumb|403px|Permissions hierarchy]]
User names must follow the [[Valid Names|valid names constraints]], and the database patterns must follow the [[Commands#Glob_Syntax|Glob Syntax]].
'''Create user 'test' with no permissions:'''
<code>dbuser:create('test', 'top-secret')</code>
'''Show detailed information about user 'test':'''
The permission file {{Code|users.xml}} is stored in the database directory. This file can be manually edited; it will be parsed once when BaseX is started.
Salted SHA256 hashes are used for authentication (the current timestamp will be used as salt). Additionally, digest hashes are used in the client/server architecture and the [[Clients|Language Bindings]], and in the [[Web Application|HTTP Context]] if the [[Options#AUTHMETHOD{{Option|AUTHMETHOD]] }} is set to {{Code|Digest}}.
=Changelog=
Revised in Version 8.0.