Role Grants
When a role is created, an implicit grant is issued on the role to the user creating the role.
Role access must be granted to other users (or public) before they can use the role. Role access is an enabling permission--by default, access to the role is prohibited unless the permission is specifically granted.