| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | Chris Travers <chris(at)travelamericas(dot)com> |
| Cc: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: CREATE RULE problem/question requesting workaround |
| Date: | 2003-12-08 16:54:57 |
| Message-ID: | 18662.1070902497@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
Chris Travers <chris(at)travelamericas(dot)com> writes:
> On Mon, 2003-12-08 at 01:39, Tom Lane wrote:
>> Is it really not possible to express what you need with plain old SQL
>> permissions? It seems like you are going out of your way to avoid the
>> obvious solution.
> Thanks-- as you can see, that is what the application was *designed* to
> use. The problem is porting the application which was designed under
> the assumption that every user would have a database account into an
> environment where that is not possible.
I guess I'm questioning the assumption that that's not possible.
Having many users share an account when you want to enforce different
permissions for each user seems like a fundamentally bad idea. Postgres
users are sufficiently lightweight entities that I think you could and
should just make more of 'em.
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2003-12-08 16:59:26 | Re: Planner question regarding functions |
| Previous Message | John Gibson | 2003-12-08 16:46:19 | Turning on/off debugging |