From: | hodges(at)xprt(dot)net |
---|---|
To: | "Pedro Fonseca" <pedro(dot)fonseca(at)netcabo(dot)pt>, pgsql-admin(at)postgresql(dot)org |
Subject: | Re: Authorization problem |
Date: | 2001-10-04 13:24:22 |
Message-ID: | 3BBC0096.18900.4AB4F2@localhost |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-admin |
Do you have pgaccess installed? Run it from unix prompt,
select the database, and put in only the user(s) you want
to have access. phppgadmin is another program that allows
you to set users for each database.
Tom
On 3 Oct 2001, at 16:48, Pedro Fonseca wrote:
> Hi Manuel!
>
> Yo no hablo el español mui bien... :)
>
> Your suggestion is just fine, but that way the authentication will be
> password based! And I don't want that... The same for Felipe's suggestion!
>
> In short: I'd like this database accessible only by *one* PostgreSQL user
> (instead of all), I don't want this user to have to authenticate through a
> password and I don't want to use TCP/IP. I think that the AUTHTYPE ident (in
> pg_hba.conf) is just fine for this case, together with a corresponding map,
> but that can only be used for TCP/IP connections...
>
> Any more suggestions? I mean, this is possible, right?
> --
> ______________________________________________________________________
> Pedro Fonseca (pedro(dot)fonseca(at)iscte(dot)pt)
> Mob.: (+351)964598357
> http://www.pedrofonseca.com
> ADETTI/ISCTE (Instituto Superior de Ciências do Trabalho e da Empresa)
>
>
> "Manuel Trujillo" <manueltrujillo(at)dorna(dot)es> wrote in message
> news:20011003161206(dot)A560(at)klingon(dot)dorna(dot)es(dot)(dot)(dot)
> > On Wed, Oct 03, 2001 at 02:17:15PM +0100, Pedro Fonseca wrote:
> >
> > > I have 2 PostgreSQL users created. I'd like access to a database
> restricted
> > > only to one of these users. As it is, in pg_hba.conf, any PostgreSQL
> user
> > > can connect locally to any database whatsoever:
> > >
> > > # TYPE DATABASE IP_ADDRESS MASK AUTHTYPE MAP
> > > local all trust
> > > host all 127.0.0.1 255.255.255.255 trust
> > >
> > > I have TCP/IP based connections disabled. What I would like would be
> > > something like:
> > >
> > > # TYPE DATABASE IP_ADDRESS MASK AUTHTYPE MAP
> > > local test_db ident
> test_db_map
> > >
> > > The problem is that the ident AUTHTYPE can only be used for TCP/IP
> > > connections. How do I tell PostgreSQL that I only want to allow
> > > postgres_user_1 to connect to test_db, and not every user? And how do I
> do
> > > this without using passwords and TCP/IP connections?
> >
> >
> > I think the solution is:
> > 1- create a passwd file for this database (test_db_passwd, for example),
> with pg_passwd test_db_passwd, and put here with pg_passwd the user's
> needed.
> > 2- put this in your pg_hba.conf:
> > # TYPE DATABASE IP_ADDRESS MASK AUTHTYPE
> MAP
> > local test_db password test_db_passwd
> test_db_map
> >
> > I'm very "newbie" in postgresql, but I think this can solve your problem.
> >
> > Sorry for my bad english, if you speak spanish, you can write to me
> directly.
>
>
>
>
> ---------------------------(end of broadcast)---------------------------
> TIP 5: Have you checked our extensive FAQ?
>
> http://www.postgresql.org/users-lounge/docs/faq.html
>
We have changed our ISP, now xprt.net - not jps.net
Tom Hodges, hodges(at)xprt(dot)net or tom_hodges(at)yahoo(dot)com
ICQ 10149621, YahooMessenger tom_hodges
Mail: 14314 SW Allen Blvd, #317; Beaverton OR 97005 USA
From | Date | Subject | |
---|---|---|---|
Next Message | Martins Zarins | 2001-10-04 15:04:31 | indexes on text columns |
Previous Message | Lee Harr | 2001-10-04 00:09:42 | Re: complete output to file?? |