On 29/03/2011 19:44, Thom Brown wrote:
> Hi all,
> I've just set up a test user, revoked all access from them to a
> database, then tried to connect to that database and it let me in.
> When I try it all from scratch, it works correctly.
> Here's the set running correctly:
> postgres=# CREATE DATABASE testdb;
> CREATE DATABASE
> postgres=# CREATE ROLE testrole;
> CREATE ROLE
> postgres=# REVOKE ALL ON DATABASE testdb FROM testrole CASCADE;
> postgres=# \c testdb testrole
> FATAL: role "testrole" is not permitted to log in
> Previous connection kept
> But now if I try something similar with an existing user and existing
> database, it doesn't work:
> postgres=# REVOKE ALL ON DATABASE stuff FROM meow CASCADE;
> postgres=# \c stuff meow
> You are now connected to database "stuff" as user "meow".
> So, I'm overlooking something. Could someone tell me what it is? I
> bet it's something obvious. I'm using 9.1dev if it's relevant.
Does the "public" role still have privileges on the database?
Raymond O'Donnell :: Galway :: Ireland
In response to
pgsql-general by date
|Next:||From: Steve Crawford||Date: 2011-03-29 20:12:52|
|Subject: Re: Curious case of the unstoppable user|
|Previous:||From: Worgan, Craig (Craig)||Date: 2011-03-29 19:13:20|
|Subject: RPM for ODBC driver|