Mija Lee <mija(at)scharp(dot)org> writes:
> I wanted to follow up on the thread opened by Jessica Richards on
> granting read only permissions. Basically it sounded like there were two
> options:
> 1. granting select on each table
> 2. alter user set default_transaction_read_only to true
You do realize that #2 is completely insecure? It's only establishing a
session default, which the user can override with a simple SET.
regards, tom lane