Best procedure for restricted access

From: Rainer Leo <leo(at)workfile(dot)de>
To: pgsql-admin(at)postgresql(dot)org
Subject: Best procedure for restricted access
Date: 2011-09-12 13:03:41
Message-ID: 467293622.20110912150341@workfile.de
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-admin

Hello,

I have been asked to configure a database role
to be used for ODBC access.

So far I have done this:

CREATE ROLE odbc_user LOGIN
ENCRYPTED PASSWORD 'bar'
NOSUPERUSER INHERIT NOCREATEDB NOCREATEROLE;

REVOKE ALL ON DATABASE foo FROM odbc_user;
REVOKE CREATE ON SCHEMA public FROM public;
GRANT SELECT ON v_sales TO odbc_user;

When I try:

foo-> SELECT * FROM customers;
access is denied as expected

foo->\d baz
I see table definitions.

How can I restrict the role "odbc_user" to just
"SELECT whatever FROM v_sales;" and nothing else?

Any help would be very appreciated.

Regards,

Rainer Leo

workfile Datenbankservice
Bocksberg 20c
D-22395 Hamburg                                

Fon: 040.60 44 90 41
Fax: 040.34 92 61 08
www.workfile.de

Browse pgsql-admin by date

  From Date Subject
Next Message Rainer Leo 2011-09-12 13:16:09 Best procedure for restricted access
Previous Message Florian Helmberger 2011-09-12 11:55:12 Re: Encoding Problem