Skip site navigation (1) Skip section navigation (2)

Best procedure for restricted access

From: Rainer Leo <leo(at)workfile(dot)de>
To: pgsql-admin(at)postgresql(dot)org
Subject: Best procedure for restricted access
Date: 2011-09-12 13:03:41
Message-ID: 467293622.20110912150341@workfile.de (view raw or flat)
Thread:
Lists: pgsql-admin
Hello,

I have been asked to configure a database role
to be used for ODBC access.

So far I have done this:

CREATE ROLE odbc_user LOGIN
  ENCRYPTED PASSWORD 'bar'
  NOSUPERUSER INHERIT NOCREATEDB NOCREATEROLE;

REVOKE ALL ON DATABASE foo FROM odbc_user;
REVOKE CREATE ON SCHEMA public FROM public;
GRANT SELECT ON v_sales TO odbc_user;

When I try:

foo-> SELECT * FROM customers;
access is denied as expected

foo->\d baz
I see table definitions.


How can I restrict the role "odbc_user" to just
"SELECT whatever FROM v_sales;" and nothing else?


Any help would be very appreciated.


Regards,

Rainer Leo

workfile Datenbankservice                   
Bocksberg 20c                                       
D-22395 Hamburg                                

Fon: 040.60 44 90 41
Fax: 040.34 92 61 08
www.workfile.de


pgsql-admin by date

Next:From: Rainer LeoDate: 2011-09-12 13:16:09
Subject: Best procedure for restricted access
Previous:From: Florian HelmbergerDate: 2011-09-12 11:55:12
Subject: Re: Encoding Problem

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group