USE [master]GOCREATE LOGIN [User_Customer] WITH PASSWORD=N'Strong_Pass', DEF

1. USE [master]
2. GO
3. CREATE LOGIN [User_Customer]
4. WITH PASSWORD=N'Strong_Pass',
5. DEFAULT_DATABASE=[Customer_DB],
6. CHECK_EXPIRATION=OFF, CHECK_POLICY=OFF
7. GO
8.  
9. ALTER SERVER ROLE [bulkadmin] ADD MEMBER [Customer_DB]--BULK
10. GO
11.  
12. USE Customer_DB
13. GO
14. CREATE USER [User_Customer] FOR LOGIN [User_Customer] --User
15. GO
16. ALTER ROLE [db_datareader] ADD MEMBER [User_Customer] --DR
17. GO
18. ALTER ROLE [db_datawriter] ADD MEMBER [User_Customer] --DW
19. GO
20. ALTER ROLE [db_ddladmin] ADD MEMBER [User_Customer] --DDL
21. GO
22. GRANT EXECUTE TO [User_Customer] --EXECUTE
23. GO
24. USE [master]
25. GO
26. DENY VIEW ANY database to [User_Customer] --DENY
27.  
28. create role MyCustomRole;
29.  
30. ALTER ROLE [db_datareader] ADD MEMBER MyCustomRole--[User_Customer] --DR
31. GO
32. ALTER ROLE [db_datawriter] ADD MEMBER MyCustomRole--[User_Customer] --DW
33. GO
34. ALTER ROLE [db_ddladmin] ADD MEMBER MyCustomRole--[User_Customer] --DDL
35. GO
36. GRANT EXECUTE TO MyCustomRole--[User_Customer] --EXECUTE
37. GO
38.  
39. alter role MyCustomRole add member [User_Customer];
40.  
41. execute as user = 'User_Customer';
42.  
43. select *
44. from sys.fn_my_permissions(null, 'database');
45.  
46. revert;