Quick Links

Re: How to allow users to log on only from my application

From:	Raymond O'Donnell <rod(at)iol(dot)ie>
To:	Andrus <kobruleht2(at)hot(dot)ee>, 'PostgreSQL' <pgsql-general(at)postgresql(dot)org>
Subject:	Re: How to allow users to log on only from my application
Date:	2007-01-30 00:29:24
Message-ID:	45BE9164.5020007@iol.ie
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-general

Andrus wrote:

> My application implements field and row level security.
> I have custom table of users where user privileges are described.
>
> However user can login directly to database using pgAdmin. This bypasses
> the security.
>
> How to allow users to login only from my application ?
> I think I must create server-side pgsql procedure for login validation.

What role are your users using to login via PgAdmin? Why not simply deny
them access in pg_hba.conf?

Ray.

---------------------------------------------------------------
Raymond O'Donnell, Director of Music, Galway Cathedral, Ireland
rod(at)iol(dot)ie
---------------------------------------------------------------

In response to

How to allow users to log on only from my application not from pgadmin at 2007-01-28 21:46:27 from Andrus

Responses

Re: How to allow users to log on only from my application at 2007-01-30 02:01:02 from Furface
Re: How to allow users to log on only from my application at 2007-01-30 09:57:54 from Andrus

Browse pgsql-general by date

	From	Date	Subject
Next Message	Rich Shepard	2007-01-30 00:30:05	Re: PostgreSQL 9.0
Previous Message	Michael Glaesemann	2007-01-30 00:24:33	Re: PostgreSQL 9.0