Skip site navigation (1) Skip section navigation (2)

Re: Role based database access

From: Scott Marlowe <smarlowe(at)g2switchworks(dot)com>
To: Thomas Mack <mack(at)ifis(dot)cs(dot)tu-bs(dot)de>
Cc: pgsql-admin(at)postgresql(dot)org
Subject: Re: Role based database access
Date: 2007-05-24 18:31:22
Message-ID: 4655D9FA.8010400@g2switchworks.com (view raw or flat)
Thread:
Lists: pgsql-admin
Thomas Mack wrote:
> Hello!
>
> I face a problem here with restricting access to databases to
> the owners of the database (Postgres 8.1.4).
>
> We would like any postgres user to have database access restricted
> to their own databases only. This is so, as we use postgres for
> educational purposes.
>
> I looked into pg_hba.conf, but unfortunately, when restricting
> database access in the database field, the NAME(!) of the database
> is concerned, which we do not restrict. Any user can create as
> many databases as needed, and the name may be choosen freely.
>
> The 'user' field does not help in this either.
>
> So is there any chance to achieve what we need without revoking
> the 'create database' permission and pre-creating the databases
> for all our users?
>
> Thanks,
> Thomas Mack
>   
Does not the sameuser database name work for you in pg_hba.conf?  I.e. 
you can only log into the database that bears your name.


In response to

Responses

pgsql-admin by date

Next:From: Carol WalterDate: 2007-05-24 19:43:38
Subject: Re: Role based database access
Previous:From: Tom LaneDate: 2007-05-24 16:40:06
Subject: Re: Abnormal storage consumption with autovacuum enabled

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group