Quick Links

Connect to db denied for superuser inherited by group

From:	<Michael(dot)Dietrich(at)swisscom(dot)com>
To:	<pgsql-admin(at)lists(dot)postgresql(dot)org>
Subject:	Connect to db denied for superuser inherited by group
Date:	2018-03-16 13:28:42
Message-ID:	9cd041b2b19143758e4f4d8a752421c5@swisscom.com
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-admin

Unexpected behavior when trying to connect to a database. Facts:
1) The privilege to connect to the database was revoked from public.
2) User without superuser privileges uses a role with superuser rights (usage confirmed with SHOW current_role.)
3) Unecpected Message: FATAL: permission denied for database "db" DETAIL: User does not have CONNECT privilege.

After granting one of the listed privileges it is working as expected.
1) granting superuser to user
2) granting connect to db for user
3) granting connect to db to group
3) granting connect to db to public

What am I missing? --Michael

Responses

Re: Connect to db denied for superuser inherited by group at 2018-03-16 13:42:34 from Stephen Frost

Browse pgsql-admin by date

	From	Date	Subject
Next Message	Stephen Frost	2018-03-16 13:42:34	Re: Connect to db denied for superuser inherited by group
Previous Message	Laurenz Albe	2018-03-16 09:40:52	Re: restore OIDs