| From: | Pavel Stehule <pavel(dot)stehule(at)gmail(dot)com> |
|---|---|
| To: | Saimon Lim <aimon(dot)slim(at)gmail(dot)com> |
| Cc: | "pgsql-general(at)postgresql(dot)org >> PG-General Mailing List" <pgsql-general(at)postgresql(dot)org> |
| Subject: | Re: How to hide stored procedure's bodies from specific user |
| Date: | 2015-02-13 00:09:33 |
| Message-ID: | CAFj8pRAK+ZZjBv2jSE9R6_z4zZ13pNXw7Y7sarz1qx8uQydOmA@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
Hi
It is currently impossible on unpatched postgres.
I am selling a patch to postgres that does a obfuscation of procedure body
Regards
Pavel Stehule
2015-02-11 10:54 GMT+01:00 Saimon Lim <aimon(dot)slim(at)gmail(dot)com>:
> Hi
> I want to hide my own stored procedures' bodies from the specific user.
> As far as I know, procedure's body is visible in the pg_catalog.pg_proc
> table.
>
> So, I did the following:
> REVOKE ALL ON pg_catalog.pg_proc FROM PUBLIC;
>
> And after it, when user tries:
> SELECT * from pg_proc;
>
> The following error occurs:
> ERROR: permission denied for relation pg_proc
>
> It turns out that user don't have access to the body of the procedure.
> But I still can get stored procedure's body using
> \sf function_name
> or with
> \ef function_name
>
> So, how can I completely hide my own stored procedure's bodies from this
> user?
>
> Thanks in advance
> Saimon
>
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tim Uckun | 2015-02-13 00:44:33 | What's a reasonable maximum number for table partitions? |
| Previous Message | Bo Tian | 2015-02-12 23:46:18 | question on Postgres smart shutdown mode |