| From: | John DeSoi <desoi(at)pgedit(dot)com> |
|---|---|
| To: | David Legault <legault(dot)david(at)gmail(dot)com> |
| Cc: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: Per Database Roles |
| Date: | 2007-02-19 19:58:07 |
| Message-ID: | 00790BB6-395A-4E18-B7DE-F2DB6A39AB17@pgedit.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On Feb 19, 2007, at 10:32 AM, David Legault wrote:
> Is there a way to attach roles to only certain databases so that
> the login [from PHP pg_connect(username, password, database)] is
> tied to that particular database and any creation of roles (users/
> groups) can be constrained into that particular database.
>
> I plan to use the roles system to be able to create the users/
> groups access/permissions and I would like to have them isolated on
> a per database basis instead of having them in a situation that
> Role A (user) belonging to DB C could also be used in DB D
> (security issue).
You can GRANT and REVOKE on database connect privileges. See
http://www.postgresql.org/docs/8.2/interactive/sql-grant.html
John DeSoi, Ph.D.
http://pgedit.com/
Power Tools for PostgreSQL
| From | Date | Subject | |
|---|---|---|---|
| Next Message | David Primero Segundo | 2007-02-19 20:09:09 | Re: [pgsql-es-ayuda] postgreSQL |
| Previous Message | Karsten Hilbert | 2007-02-19 19:48:07 | Re: Why *exactly* is date_trunc() not immutable ? |