Skip site navigation (1) Skip section navigation (2)

view and column rights

From: "Jean-Yves F(dot) Barbier" <12ukwn(at)gmail(dot)com>
To: pgsql-novice(at)postgresql(dot)org
Subject: view and column rights
Date: 2010-06-27 14:36:15
Message-ID: 20100627163615.1a285029@anubis.defcon1 (view raw, whole thread or download thread mbox)
Lists: pgsql-novice
Hi list,

If I give column rights to a user, I can't use a general view for him, which
is normal.
I read a lot about DBs and some specialists say that I must not give
direct data (table) access to users but always through a view.

Are they right? (meaning I must have as much views as users - and how
can I do that, where to put them, shall I generate them on-ze-fly,...?),

or are they wrong (meaning I only have to recover user's rights at
connection and build my queries accordingly directly toward tables)?

Whatever the complexity, security is the master word here.

A sine curve goes off to infinity, or at least the end of the blackboard.
		-- Prof. Steiner


pgsql-novice by date

Next:From: Tom LaneDate: 2010-06-27 14:38:03
Subject: Re: escape
Previous:From: Jean-Yves F. BarbierDate: 2010-06-27 14:23:31
Subject: Re: escape

Privacy Policy | About PostgreSQL
Copyright © 1996-2017 The PostgreSQL Global Development Group