Home > mailing lists

Re: Privileges question - Mailing list pgsql-admin

From	Kevin Grittner
Subject	Re: Privileges question
Date	October 18, 2011 16:27:23
Msg-id	4E9D628A0200002500042183@gw.wicourts.gov Whole thread Raw
In response to	Privileges question ("Alexander James Spence [axs]" <axs@aber.ac.uk>)
Responses	Re: Privileges question ("Alexander James Spence [axs]" <axs@aber.ac.uk>)
List	pgsql-admin

Tree view

"Alexander James Spence [axs]" <axs@aber.ac.uk> wrote:

> will have to create around 200+ users and user databases for
> student project use.  I have tried all sorts of GRANT and REVOKE
> combinations but for the life of me cannot stop other users from
> creating tables in a database that is not their own.

test=# create user xxx;
CREATE ROLE
test=# create database xxx owner xxx;
CREATE DATABASE
test=# \c xxx
You are now connected to database "xxx" as user "kgrittn".
xxx=# revoke create on database xxx from public;
REVOKE
xxx=# revoke create on schema public from public;
REVOKE
xxx=# grant create on schema public to xxx;
GRANT

You might also want to limit connection rights in pg_hba.conf

-Kevin

pgsql-admin by date:

From: "Alexander James Spence [axs]"
Date: 18 October 2011, 16:16:02
Subject: Privileges question

From: "Alexander James Spence [axs]"
Date: 18 October 2011, 17:18:23
Subject: Re: Privileges question

Re: Privileges question - Mailing list pgsql-admin

Previous

Next