Re: grant everything on everything and then revoke
| От | Ivan Sergio Borgonovo |
|---|---|
| Тема | Re: grant everything on everything and then revoke |
| Дата | |
| Msg-id | 20090303185405.7372c6d9@dawn.webthatworks.it обсуждение исходный текст |
| Ответ на | Re: grant everything on everything and then revoke (John R Pierce <pierce@hogranch.com>) |
| Список | pgsql-general |
On Tue, 03 Mar 2009 09:29:17 -0800 John R Pierce <pierce@hogranch.com> wrote: > Ivan Sergio Borgonovo wrote: > > I'd like to have different users mainly to have a different > > search schema path. > > Things may evolve so this is not going to be the only reason to > > have more than one user. > > But I'm faced with the problem of granting the same access of the > > owner of the db to the other users. > ... > have the database owned by a 'ROLE and make your users members of > that ROLE. This looks really neat for the beginning and it doesn't even look as an hack ;) What if I had to differentiate privileges of each user? Will revoking privileges on each users work? I didn't understand how CREATE SCHEMA schemaname AUTHORIZATION username; AUTHORIZATION really works and maybe it could be another way to approach the problem. Thanks to everybody. Even the pointer to the functions was interesting. The acl_admin.grant_on_all seems what my initial quest was looking for, but the ROLE trick seems much more straight forward currently. -- Ivan Sergio Borgonovo http://www.webthatworks.it
В списке pgsql-general по дате отправления: