| From: | Natalie Wenz <nataliewenz(at)ebureau(dot)com> |
|---|---|
| To: | "pgsql-admin(at)postgresql(dot)org" <pgsql-admin(at)postgresql(dot)org> |
| Subject: | postgres_fdw user mapping and role inheritance |
| Date: | 2015-07-16 18:07:02 |
| Message-ID: | 2EBBB4BA-B1C9-4978-8182-F35F8831FD0E@ebureau.com |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
Hi all,
We're looking at using postgres_fdw, and while setting it up for a test using postgres 9.4.4, I noticed that it doesn't seem to honor role inheritance.
For example, having created foreign_server:
create role local_group with nologin;
create role individual_user;
grant local_group to individual_user;
create user mapping for local_group
server foreign_server
options (user 'foreign_user', password '');
create foreign table foreign_table (id serial, data text)
server foreign_server
options (schema_name 'some_schema', table_name 'some_table');
When I tried this, individual_user could not select from foreign_table, even though I expected individual_user to inherit from local_group:
select * from foreign_table;
ERROR: user mapping not found for "individual_user"
It did work when I created a user mapping for individual_user (to verify that I had the other parts set up correctly):
create user mapping for individual_user
server foreign_server
options (user 'foreign_user', password '');
Am I missing something? Is there a way to tell postgres_fdw to allow individual_user to inherit user mappings from groups of which it is a part? Is there a reason that it doesn't allow it, or is it a bug or something that hasn't been implemented yet? (Will it be fixed or implemented in postgres 9.5?)
Many thanks,
Natalie
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Guillaume Lelarge | 2015-07-16 18:11:50 | Re: Automatic restore corruption problem |
| Previous Message | Yiqing Jin | 2015-07-16 17:29:27 | segfault when creating index on huge table |