Home > mailing lists

security via views - Mailing list pgsql-admin

From	Enrico Weigelt
Subject	security via views
Date	April 27, 2005 15:52:19
Msg-id	20050427155202.GA20043@nibiru.borg.metux.de Whole thread Raw
Responses	Re: security via views Re: security via views
List	pgsql-admin

Tree view

Hi folks,

we've got a larger project with several subsystems, which should
run in their own security context / users.

Most of the database access works over views and functions.
For functions its possible to run them with separate privileges
than the calling user. But is this also possible with views ?
I've noticed that for views also GRANT is necessary (AFAIK a
view is nothing else than a table with appropriate RULEs).
Does it work to grant some user access to his own view, but
not to the tables where the view works on ?


thx
--
---------------------------------------------------------------------
 Enrico Weigelt    ==   metux IT service

  phone:     +49 36207 519931         www:       http://www.metux.de/
  fax:       +49 36207 519932         email:     contact@metux.de
  cellphone: +49 174 7066481
---------------------------------------------------------------------
 -- DSL ab 0 Euro. -- statische IP -- UUCP -- Hosting -- Webshops --
---------------------------------------------------------------------

pgsql-admin by date:

From: Mario Soto Cordones
Date: 26 April 2005, 21:05:06
Subject: Re: cache lookup failed for function 8044889

From: pgsql-admin@rickabaugh.net
Date: 27 April 2005, 15:53:17
Subject: PostgreSQL 8.0.x on Windows XPe

security via views - Mailing list pgsql-admin

Previous

Next