| From: | Sam Jas <samjas33(at)yahoo(dot)com> |
|---|---|
| To: | postgresql Forums <pgsql-general(at)postgresql(dot)org>, Adam Rich <adam(dot)r(at)sbcglobal(dot)net> |
| Subject: | Re: Preventing database listing? |
| Date: | 2009-10-22 05:00:11 |
| Message-ID: | 314062.96880.qm@web95014.mail.in2.yahoo.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
Below are the options that you can use to create user and assign them privileges according to your environment.
Command: CREATE USER
Description: define a new database role
Syntax:
CREATE USER name [ [ WITH ] option [ ... ] ]
where option can be:
SUPERUSER | NOSUPERUSER
| CREATEDB | NOCREATEDB
| CREATEROLE | NOCREATEROLE
| CREATEUSER | NOCREATEUSER
| INHERIT | NOINHERIT
| LOGIN | NOLOGIN
| CONNECTION LIMIT connlimit
| [ ENCRYPTED | UNENCRYPTED ] PASSWORD 'password'
| VALID UNTIL 'timestamp'
| IN ROLE rolename [, ...]
| IN GROUP rolename [, ...]
| ROLE rolename [, ...]
| ADMIN rolename [, ...]
| USER rolename [, ...]
| SYSID uid
postgres=# \h grant
Command: GRANT
Description: define access privileges
Syntax:
GRANT { { SELECT | INSERT | UPDATE | DELETE | REFERENCES | TRIGGER }
[,...] | ALL [ PRIVILEGES ] }
ON [ TABLE ] tablename [, ...]
TO { [ GROUP ] rolename | PUBLIC } [, ...] [ WITH GRANT OPTION ]
GRANT { { USAGE | SELECT | UPDATE }
[,...] | ALL [ PRIVILEGES ] }
ON SEQUENCE sequencename [, ...]
TO { [ GROUP ] rolename | PUBLIC } [, ...] [ WITH GRANT OPTION ]
GRANT { { CREATE | CONNECT | TEMPORARY | TEMP } [,...] | ALL [ PRIVILEGES ] }
ON DATABASE dbname [, ...]
TO { [ GROUP ] rolename | PUBLIC } [, ...] [ WITH GRANT OPTION ]
GRANT { EXECUTE | ALL [ PRIVILEGES ] }
ON FUNCTION funcname ( [ [ argmode ] [ argname ] argtype [, ...] ] ) [, ...]
TO { [ GROUP ] rolename | PUBLIC } [, ...] [ WITH GRANT OPTION ]
GRANT { USAGE | ALL [ PRIVILEGES ] }
ON LANGUAGE langname [, ...]
TO { [ GROUP ] rolename | PUBLIC } [, ...] [ WITH GRANT OPTION ]
GRANT { { CREATE | USAGE } [,...] | ALL [ PRIVILEGES ] }
ON SCHEMA schemaname [, ...]
TO { [ GROUP ] rolename | PUBLIC } [, ...] [ WITH GRANT OPTION ]
GRANT { CREATE | ALL [ PRIVILEGES ] }
ON TABLESPACE tablespacename [, ...]
TO { [ GROUP ] rolename | PUBLIC } [, ...] [ WITH GRANT OPTION ]
GRANT role [, ...] TO rolename [, ...] [ WITH ADMIN OPTION ]
--
Thanks
Sam DJ
--- On Thu, 22/10/09, Adam Rich <adam(dot)r(at)sbcglobal(dot)net> wrote:
From: Adam Rich <adam(dot)r(at)sbcglobal(dot)net>
Subject: [GENERAL] Preventing database listing?
To: "postgresql Forums" <pgsql-general(at)postgresql(dot)org>
Date: Thursday, 22 October, 2009, 4:18 AM
This seems like a simple question that would have come up, but I'm not able to find an answer in google, PG docs, or PG mailing list archives.
How do I prevent a user from being able to list all databases in my cluster? I want to restrict them to seeing just the databases they have connect rights to.
Thanks
Adam
-- Sent via pgsql-general mailing list (pgsql-general(at)postgresql(dot)org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-general
Now, send attachments up to 25MB with Yahoo! India Mail. Learn how. http://in.overview.mail.yahoo.com/photos
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Sam Jas | 2009-10-22 05:10:07 | Re: postgres doesn't start after crash |
| Previous Message | Adam Rich | 2009-10-22 04:18:04 | Preventing database listing? |