Re: Disallow access from psql, or allow access only from specific client app

From: Sim Zacks <sim(at)compulab(dot)co(dot)il>
To: pgsql-general(at)postgresql(dot)org
Subject: Re: Disallow access from psql, or allow access only from specific client app
Date: 2011-07-25 13:08:53
Message-ID: 4E2D6AE5.1000106@compulab.co.il
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-general

A lot of applications don't actually have a database role per user.

There is an application user who logs into the database and the
application handles application logins through a users table in the
database. That way the only thing that the user has access to is the
application and not the database.

If you access the database through an application server, or server side
script, you can limit access to only that (and other specific) IP
addresses in the pg_hba.conf.

Sim

On 07/25/2011 02:56 PM, Mario Puntin wrote:

> Thanks a lot to everybody for the replies.
>
> Kurt: by the term "client" I meant an application, like psql, from
> which users could connect to the database, as they have a
> user/password, and manipulate data. I want them to access from
> certain, specific application, but I don't want them to install psql,
> for example, and have also access through it.
>
> I liked Chris Carver idea of modifing user/password: quite simple and
> efective.
> But thank you all people, you gave me some fine ideas.
>
> Best regards,
> Mario
>

In response to

Responses

Browse pgsql-general by date

  From Date Subject
Next Message Achilleas Mantzios 2011-07-25 13:38:48 Re: Disallow access from psql, or allow access only from specific client app
Previous Message Yan Chunlu 2011-07-25 12:44:20 Re: streaming replication does not work across datacenter with 20ms latency?