Home > mailing lists

Re: kind of RULE on SELECT depending on existence of a WHERE condition - Mailing list pgsql-sql

From	Richard Huxton
Subject	Re: kind of RULE on SELECT depending on existence of a WHERE condition
Date	March 1, 2010 12:39:08
Msg-id	4B8BC36E.4040007@archonet.com Whole thread Raw
In response to	Re: kind of RULE on SELECT depending on existence of a WHERE condition (rawi <only4com@web.de>)
Responses	Re: kind of RULE on SELECT depending on existence of a WHERE condition Re: kind of RULE on SELECT depending on existence of a WHERE condition
List	pgsql-sql

Tree view

On 01/03/10 12:16, rawi wrote:
>
>> Not quite the way you suggest. You could build a series of views with
>> the WHERE conditions built in to them, and grant permissions on those
>> though.
>
> Thank you very much for your help.
>
> Unfortunately is this not what I hoped...
> The permissions will be granted dynamic by the application out of the
> user-records and expressed in the WHERE flags.
> I'll need another approach...

You could write a set-returning function that takes either:
1. A list of conditions
2. The text for a WHERE clause

If it gets no conditions or a blank string, it returns nothing.

You will need to create the function with SECURITY DEFINER permissions, 
as a user who can read from the table. Make sure the application cannot 
read from the table and has to use the function.

--   Richard Huxton  Archonet Ltd

pgsql-sql by date:

From: Michael Gould
Date: 01 March 2010, 12:25:44
Subject: placement of stored procedures and contrib modules

From: Aron
Date: 01 March 2010, 15:30:19
Subject: Re: Using new.id in the WHERE condition of one UPDATE inside ON INSERT rule

Re: kind of RULE on SELECT depending on existence of a WHERE condition - Mailing list pgsql-sql

Previous

Next