| From: | Bruno Wolff III <bruno(at)wolff(dot)to> |
|---|---|
| To: | Tuomas Vanhanen <postgres(at)tuomasvanhanen(dot)com> |
| Cc: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: Security, IP and username restrictions |
| Date: | 2002-07-24 12:25:41 |
| Message-ID: | 20020724122541.GA23082@wolff.to |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On Wed, Jul 24, 2002 at 11:08:12 +0300,
Tuomas Vanhanen <postgres(at)tuomasvanhanen(dot)com> wrote:
> Hi,
>
> I´m very new to Postgres and I need some help with following: (some how I
> was unable to mail to the newbie maillist, sorry..)
>
> Is it possible to restrict user rights by using both username+password and
> IP address.
>
> I have a situation where same user accessing the database from different
> locations (IP addresses) must have different user rights. This means, that
> same user in different locations would see different ammount of data. I know
> I can build this easily to the web based front-end, but I´d like to make the
> restriction in Postgres too.
How could you use a web based front end to do this? If the user is going
through a web page it will be the web page's cgi scripts accessing the
database not the user.
Since access rights are given out by user name, there won't be a way for a user
name to have different rights when connecting from different IP addresses.
You will be able to have different block rules per user in 7.3. So that
you may be able to solve your problem by giving one user several user names
and then restricting which user names can connect from which IP addresses.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Jorge Sarmiento | 2002-07-24 13:21:03 | Error while recovering a database |
| Previous Message | Andrew Sullivan | 2002-07-24 12:20:41 | Re: error modifying max_connections (maybe a little o.t.) |