Home > mailing lists

Best practice to create a read-only user? - Mailing list pgsql-admin

From	matthias ritzkowski
Subject	Best practice to create a read-only user?
Date	May 3, 2013 17:03:13
Msg-id	20130503100302.0000043e@unknown Whole thread Raw
Responses	Re: Best practice to create a read-only user? ("E. S." <yields.falsehood@gmail.com>) Re: Best practice to create a read-only user? (Sergey Konoplev <gray.ru@gmail.com>)
List	pgsql-admin

Tree view

Hello,

Usually I would

create user uuu password 'ppp';
GRANT usage on schema zzz to uuu;
GRANT select on all tables in schema zzz to uuu;


But just this morning someone used
create user uuu password 'ppp';
alter user uuu set default_transaction_read_only = on;
GRANT select on all tables in schema zzz to uuu;

So I only added the grant usage and it worked fine.
What do people use day to day?

I had frankly never explored the default_transaction_read_only
parameter ...


--

regards
Matthias Ritzkowski
-marlinmobile-

pgsql-admin by date:

From: Nghia Truong
Date: 03 May 2013, 16:45:51
Subject: Problem: pg_hba.conf is automatically rewritten every day

From: "Marcelo Verissimo"
Date: 03 May 2013, 17:24:59
Subject: RES: Problem: pg_hba.conf is automatically rewritten every day

Best practice to create a read-only user? - Mailing list pgsql-admin

Previous

Next