Skip site navigation (1) Skip section navigation (2)

Re: Roles

From: Tim Bowden <tim(dot)bowden(at)westnet(dot)com(dot)au>
To: brucejhyatt(at)yahoo(dot)com
Cc: pgsql-novice(at)postgresql(dot)org
Subject: Re: Roles
Date: 2008-11-22 04:37:47
Message-ID: 1227328667.6066.74.camel@edoras (view raw, whole thread or download thread mbox)
Lists: pgsql-novice
On Fri, 2008-11-21 at 18:58 -0800, Bruce Hyatt wrote:
> --- On Fri, 11/21/08, Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> wrote:
> > There's no builtin concept of an "admin"
> > role.  There is such a thing as
> > superuser, but that's a property of a role not a
> > specific role (ie, you
> > can have more than one superuser role if you want).  See
> > "Database roles
> > and privileges" chapter in the manual.  The CREATE
> > ROLE reference page
> > has some details too.  Be sure to consult the manual
> > version
> > corresponding to the PG version you are using, as the
> > features in this
> > area have changed over time.
> > 
> > 			regards, tom lane
> Thanks for the response Tom, especially at this day and hour.
> I will revisit these pages but I would like to draw your attention to
>  this page:
> Are the options not essentially existing roles?
> Sincerely,
> Bruce

They are not roles, but rather attributes that can be assigned to roles
as Tom said.  Ie, you can define a role myadmin, and add the superuser
attribute to that role so the myadmin user has superuser privileges:


You can't login as user 'superuser' as such, because there is no such
role.  The closest to that is the postgres role (by convention) which by
default has superuser privileges. You may actually want most admin
functions to be done be a non superuser though, for better protection
against woopsies. ie,


If you want more than one admin, perhaps then:

CREATE ROLE admin1 IN ROLE myadmin;

Tim Bowden

Experience is that marvelous thing that enables you recognize a mistake
when you make it again.

In response to

  • Re: Roles at 2008-11-22 02:58:33 from Bruce Hyatt

pgsql-novice by date

Next:From: Luiz K. MatsumuraDate: 2008-11-24 13:40:18
Subject: Deferrerable Check constraints
Previous:From: Bruce HyattDate: 2008-11-22 02:58:33
Subject: Re: Roles

Privacy Policy | About PostgreSQL
Copyright © 1996-2017 The PostgreSQL Global Development Group