| From: | Michael Fuhr <mike(at)fuhr(dot)org> |
|---|---|
| To: | John DeSoi <desoi(at)pgedit(dot)com> |
| Cc: | Timothy Smith <timothy(at)open-networks(dot)net>, pgsql-general(at)postgresql(dot)org |
| Subject: | Re: permission to create user |
| Date: | 2006-07-17 12:23:19 |
| Message-ID: | 20060717122318.GA3723@winnie.fuhr.org |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On Mon, Jul 17, 2006 at 07:54:08AM -0400, John DeSoi wrote:
> On Jul 17, 2006, at 2:56 AM, Timothy Smith wrote:
> >is it possible to give a non super user the ability to create
> >another user of a different group?
> >i'm looking for a way to assign a special group of admin's just
> >enough rights to create other lowbie users without letting them
> >bypass all other access restrictions.
>
> You could create a function with the SECURITY DEFINER option which
> allows the function to be executed with the privileges of the user
> that created it.
Also, if you're using 8.1, then giving certain roles the CREATEROLE
attribute might be what you're after.
http://www.postgresql.org/docs/8.1/interactive/role-attributes.html
--
Michael Fuhr
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Martijn van Oosterhout | 2006-07-17 12:39:40 | Re: postgreSQL installation |
| Previous Message | John DeSoi | 2006-07-17 11:54:08 | Re: permission to create user |