| From: | Lonni J Friedman <netllama(at)gmail(dot)com> |
|---|---|
| To: | Kurt Buff <kurt(dot)buff(at)gmail(dot)com> |
| Cc: | Mario Puntin <mariomop(at)gmail(dot)com>, pgsql-general(at)postgresql(dot)org |
| Subject: | Re: Disallow access from psql, or allow access only from specific client app |
| Date: | 2011-07-24 21:48:31 |
| Message-ID: | CAP=oouE9LPKQ82uoLqYRuUZmOTHEvFPSo7UAge05n3WZ4CRYUA@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On Sun, Jul 24, 2011 at 2:46 PM, Kurt Buff <kurt(dot)buff(at)gmail(dot)com> wrote:
> On Sun, Jul 24, 2011 at 14:36, Mario Puntin <mariomop(at)gmail(dot)com> wrote:
>>
>> Hi everybody:
>> I searched the web trying to find an answer to this, but found none. I have
>> a postgresql server and a database, and I granted access to some users.
>> However I want them to access the data only through some specific client
>> application. I do not want them to have access through psql or some other
>> kind of client app. But, as I created them a user/pass they could use them.
>> What would you do?
>> Thanks in advance.
>
> Make a web front end, and present them with only the queries you want
> them to have, via a dropdown list and a set of fields for which you
> sanitize the input.
>
> Alternatively, build a GUI app that does the same thing, but if your
> users are sophisticated and/or malicious you'll also have to build the
> GUI with some sort of application authentication and encryption.
Don't mean to butt in, but how does this meet Mario's requirement of
blocking access from psql and/or only allowing access from a specific
client?
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Chris Travers | 2011-07-24 21:52:29 | Re: Disallow access from psql, or allow access only from specific client app |
| Previous Message | Kurt Buff | 2011-07-24 21:46:14 | Re: Disallow access from psql, or allow access only from specific client app |