Quick Links

Re: Converting from single user w/pool to multiple users

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	Jeff Amiel <jamiel(at)istreamimaging(dot)com>
Cc:	pgsql-general(at)postgresql(dot)org
Subject:	Re: Converting from single user w/pool to multiple users
Date:	2005-03-24 16:16:39
Message-ID:	27320.1111680999@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-general

Jeff Amiel <jamiel(at)istreamimaging(dot)com> writes:
> Could we continue to use our existing connection pool (via our app
> server) and every time the application 'gets' a connection (as a
> superuser) , we then 'SET SESSION AUTHORIZATION' to the appropriate user
> who is performing the action?

That would work to the extent that you filter SQL commands so a
nefarious user can't issue his own 'SET SESSION AUTHORIZATION'
to become someone else ...

regards, tom lane

In response to

Re: Converting from single user w/pool to multiple users at 2005-03-24 16:14:21 from Jeff Amiel

Browse pgsql-general by date

	From	Date	Subject
Next Message	Tom Lane	2005-03-24 16:24:14	Re: Converting from single user w/pool to multiple users
Previous Message	Jeff Amiel	2005-03-24 16:14:21	Re: Converting from single user w/pool to multiple users