| From: | Richard Broersma Jr <rabroersma(at)yahoo(dot)com> |
|---|---|
| To: | Aaron Bono <postgresql(at)aranya(dot)com>, sathish kumar shanmugavelu <sathishkumar(dot)shanmugavelu(at)gmail(dot)com> |
| Cc: | pgsql-sql(at)postgresql(dot)org |
| Subject: | Re: User Permission |
| Date: | 2006-07-19 15:18:27 |
| Message-ID: | 20060719151827.19816.qmail@web31811.mail.mud.yahoo.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-sql |
> > Dear group,
> > i created a user named 'dataviewer' and grant only select permission to
> > that user,
> > but now the user could able to create tables. how to restrict this,
> > i want to give permission to create views and do selects on tables and
> > views.
> > how to do it?
> > plz help.
> Have your checked
> http://www.postgresql.org/docs/8.1/interactive/sql-grant.html
> http://www.postgresql.org/docs/8.1/interactive/sql-revoke.html
> I would start by creating a role:
> http://www.postgresql.org/docs/8.1/interactive/user-manag.html
> And revoke all on it. Then add only the permissions it needs and assign the
> role to the user.
Also, one additional point would be to revoke all from public as mentioned in the following
thread:
http://archives.postgresql.org/pgsql-general/2006-07/msg00148.php
Apparently, whatever privileges 'pubic' has are extended to the privileges of the individual
users.
Regards,
Richard Broersma Jr.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Collin Peters | 2006-07-19 17:42:56 | Multi-table insert using RULE - how to handle id? |
| Previous Message | Florian Weimer | 2006-07-19 15:06:14 | Re: INSERT/UPDATEs cycles and lack of phantom locking |