From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
---|---|
To: | ivanov17(at)riseup(dot)net |
Cc: | pgsql-novice(at)lists(dot)postgresql(dot)org |
Subject: | Re: Grant CREATE privilege on all schemas |
Date: | 2023-09-12 02:04:41 |
Message-ID: | 2712774.1694484281@sss.pgh.pa.us |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-novice |
ivanov17(at)riseup(dot)net writes:
> Is there a way to grant roles CREATE
> privileges on all schemas?
This is not supported, and it's not likely to ever become supported
in exactly the way you phrased it, because that would presumably
include CREATE on the pg_catalog schema. If you give somebody
that, you might as well just skip the fooling around and give them
full superuser, because they could hack their way to that in less
time than it's taking me to type this email. In general, you
want to be pretty darn chary about giving out permissions on
schemas that are likely to be in other users' search_path, for
much the same reasons that you don't give random users write
permission on /usr/bin/.
regards, tom lane
From | Date | Subject | |
---|---|---|---|
Next Message | Nature Conservation Geovista Space | 2023-09-12 12:12:37 | Re: Even if I have a lot of free space PgSQL returns "ERROR: could not extend file - No space left on device" |
Previous Message | David G. Johnston | 2023-09-12 01:42:56 | Re: Grant CREATE privilege on all schemas |