Quick Links

access to execute function without access to it content

From:	Aleksandr Peshcherskikh <aleksandr(dot)peshcherskikh(at)gmail(dot)com>
To:	pgadmin-support(at)postgresql(dot)org
Subject:	access to execute function without access to it content
Date:	2009-07-14 16:11:46
Message-ID:	f4242f520907140911k6eb13a40j6a75aa263a868f@mail.gmail.com
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgadmin-support

Hello support team!
I wanna do next trick. Create user and deny access on tables to him but
allow to execute stored procedures which are referenced to the denied data.
It's very ordinary use case. But I don't know how to do it in postgresql (if
it is possible of course)
I tried the next way.
1. create database test (for owner postgres)
2. create table test (for owner postgres)
3. create function trytest with simple body "perform * from test;" (for
owner postgres)
4. create user test;
5. grant execute trytest to test
6. revoke select on test from test
Now if I try to execute "trytest" from user "test" it returns me error
"access denied to table test"
What's wrong do I do?
Is there any way to do what i whant?
Regards, Aleksandr.

Responses

Re: access to execute function without access to it content at 2009-07-15 04:22:15 from Pavel Stehule

Browse pgadmin-support by date

	From	Date	Subject
Next Message	Anj Adu	2009-07-14 18:08:07	pgadmin very slow
Previous Message	Mark Murawski	2009-07-13 19:49:02	Re: Need help urgent!!!