Re: PostgreSQL Security/Roles/Grants
| От | Stephen Frost |
|---|---|
| Тема | Re: PostgreSQL Security/Roles/Grants |
| Дата | |
| Msg-id | 20091101190959.GD17756@tamriel.snowman.net обсуждение исходный текст |
| Ответ на | PostgreSQL Security/Roles/Grants (Andrew Hall <andrewah@hotmail.com>) |
| Список | pgsql-sql |
Andrew, * Andrew Hall (andrewah@hotmail.com) wrote: > 2. Non-default role -> a role which has to be explicitly activated during the lifecycle of an application in order to gainaccess to database resources. There are no limits on the number of non-default roles. This type of role helps us to onlyprovide a user with the minimal set of privileges that they require at any given time, and minimise their access to databaseresources. > > I have looked through the PostgreSQL documentation, and cannot find anything analogous to the 'non-default role' whichI have outlined above - although obviously it does support roles. > > I just want to confirm that all roles in postgreSQL are activated at login time? No. You need to read the documentation on the 'noinherit' attribute of roles. See: http://www.postgresql.org/docs/8.4/static/role-membership.html > Secondly, is there a limit on the number of roles which can be assigned to a user (or more accurately a 'login role') inpostgreSQL? No. Thanks, Stephen
В списке pgsql-sql по дате отправления: