Create a confidentiality group and add it to the confidentiality matrix as follows. Attributes are given to the confidentiality group by the third argument in JSON format. Refer to "B.3 Confidentiality Group Manipulation Functions" for the attributes that can be assigned.

In the example below, a role belonging to this confidentiality group grants the CREATEDB privilege.

select pgx_create_confidential_group('matrix_foo', 'group1', '{"CREATEDB":true}', 'Roles belonging to this confidentiality role are permitted to create db.')

You can also check the added confidentiality group by referring to the pgx_confidential_group table.