Re: authentication questions - Mailing list pgsql-novice

From Mendola Gaetano
Subject Re: authentication questions
Date
Msg-id 002301c33c91$46aa5b80$152aa8c0@GMENDOLA2
Whole thread Raw
In response to Re: authentication questions  (Michael Hanna <zen@hwcn.org>)
Responses Re: authentication questions
List pgsql-novice
"Michael Hanna" <zen@hwcn.org> wrote:
> ok, to avoid having too many users in pg_shadow, could I make a user
> called 'webapp' in pg_shadow who had access to one particular DB only,
> and this DB could contain a table of all the users who use that web
> application? seems more efficient that way..

In that way you have less controll on who is using the DB,
for example you can not use current_user in order to know
who is doing the query and you can not use the privileges on
tables, stored procedure, views.....
and last but not least why you are aware about "do not fill the
pg_shadow"?


Regards
Gaetano Mendola


pgsql-novice by date:

Previous
From: christoph.dellavalle@goetheanum.ch
Date:
Subject: missing postmaster.conf
Next
From: Rory Campbell-Lange
Date:
Subject: SELECT too complex?