Home > mailing lists

Re: granting right to create and delete just one database - Mailing list pgsql-general

From	Laurenz Albe
Subject	Re: granting right to create and delete just one database
Date	June 5, 2019 11:52:17
Msg-id	91b121d8f4f2e4a7b85e46f87cf91f634598c88d.camel@cybertec.at Whole thread Raw
In response to	granting right to create and delete just one database (Chris Withers <chris@withers.org>)
Responses	Re: granting right to create and delete just one database
List	pgsql-general

Tree view

Chris Withers wrote:
> Is there any way to grant rights to a user such that they can drop and 
> re-create only a single database?

No; what I'd do if I needed that is to create a SECURITY DEFINER function
that is owned by a user with the CREATEDB privilege.
This function can be called by a normal user that has the EXECUTE privilege
on the function.

Don't forget to "SET search_path" on such a function (as mentioned in the
documentation).  It might also be a good idea to REVOKE EXECUTE on the
function from PUBLIC.

Yours,
Laurenz Albe
-- 
Cybertec | https://www.cybertec-postgresql.com

pgsql-general by date:

From: Rob Northcott
Date: 05 June 2019, 11:05:16
Subject: RE: Query very different speeds on seemingly similar data

From: Chris Withers
Date: 05 June 2019, 11:56:10
Subject: Re: granting right to create and delete just one database

Re: granting right to create and delete just one database - Mailing list pgsql-general

Previous

Next