| From: | Brent Wood <b(dot)wood(at)niwa(dot)co(dot)nz> |
|---|---|
| To: | Marvin McNett <mmcnett(at)cs(dot)ucsd(dot)edu> |
| Cc: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: insert through function only |
| Date: | 2004-05-03 22:36:54 |
| Message-ID: | 20040504103312.L73279-100000@storm.niwa.co.nz |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On Mon, 3 May 2004, Marvin McNett wrote:
> How do I go about ensuring that data is only added to a table through a
> function? I've tried granting execute persission on the function which
> inserts data, but can't get it to work unless the user also has insert
> permission on the table. I don't want the user to be able to
> arbitrarily insert data.
>
Maybe something along these lines?
Have the function grant insert to the user prior to inserting & revoke it
afterwards. The user will have generic insert access while the function is
running, but if this is a problem, have the function lock the table
during the insert operation, then revoke the insert permision before
unlocking the table.
Brent Wood
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bruno Wolff III | 2004-05-03 22:39:37 | Re: insert through function only |
| Previous Message | Loeke | 2004-05-03 22:34:23 | GRANT TEMPORARY ON DATABASE to Public |