Re: Inserts restricted to a trigger - Mailing list pgsql-general

From raf@raf.org
Subject Re: Inserts restricted to a trigger
Date
Msg-id 20190618004728.ph5aeg4wlucll7y5@raf.org
Whole thread Raw
In response to Re: Inserts restricted to a trigger  (Adrian Klaver <adrian.klaver@aklaver.com>)
Responses Re: Inserts restricted to a trigger
List pgsql-general
Adrian Klaver wrote:

> On 6/17/19 4:54 PM, Miles Elam wrote:
> > Is there are way to restrict direct access to a table for inserts but
> > allow a trigger on another table to perform an insert for that user?
> > 
> > I'm trying to implement an audit table without allowing user tampering
> > with the audit information.
> 
> Would the below not work?:
> CREATE the table as superuser or other privileged user
> Have trigger function run as above user(use SECURITY DEFINER)

and make sure not to give any other users insert/update/delete
permissions on the audit table.

> > Thanks in advance,
> > 
> > Miles Elam
> 
> -- 
> Adrian Klaver
> adrian.klaver@aklaver.com



pgsql-general by date:

Previous
From: Tom Lane
Date:
Subject: Re: psql UPDATE field [tab] expands to DEFAULT?
Next
From: Tim Cross
Date:
Subject: Re: psql UPDATE field [tab] expands to DEFAULT?