| From: | "Gauthier, Dave" <dave(dot)gauthier(at)intel(dot)com> |
|---|---|
| To: | "pgsql-general(at)postgresql(dot)org" <pgsql-general(at)postgresql(dot)org> |
| Subject: | column level, uid based authorization to update columns |
| Date: | 2009-09-03 17:17:15 |
| Message-ID: | 482E80323A35A54498B8B70FF2B8798004188B2064@azsmsx504.amr.corp.intel.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
In linux, given the linux based uid of the user, how might someone implement column level update restrictions on a uid basis? For example...
create table foo (strcol varchar(256), intcol integer);
Now, I want linux processes runing under uid "joesmith" to be able to update strcol but not intcol. Some other user could update intcol but not strcol. Others could update both, others neither. I'm also willing to give you a table that maps all uids to the columns they can update, something you could ref in a constraint or update trigger or something. So that might be something like...
create table foo_auth (uid varchar(256), cols text[]);
insert into foo_auth (uid,cols) values ('joesmith','{'strcol'}');
insert into foo_auth (uid,cols) values ('jillbrown','{'intcol'}');
insert into foo_auth (uid,cols) values ('thedba','{'strcol','intcol'}');
Thanks in Advance !
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Ries van Twisk | 2009-09-03 17:25:01 | Re: column level, uid based authorization to update columns |
| Previous Message | Willy-Bas Loos | 2009-09-03 17:03:07 | Re: auto-increment in a view |