Home > mailing lists

Re: No create table - Mailing list pgsql-admin

From	Anderson Alves de Albuquerque
Subject	Re: No create table
Date	July 27, 2007 14:50:45
Msg-id	9b3f75f0707270748o6152398fw528149000be61d34@mail.gmail.com Whole thread Raw
In response to	Re: No create table (Alvaro Herrera <alvherre@commandprompt.com>)
List	pgsql-admin

Tree view

When I use revoke that you send, I revoke permission in all database. Is there possible I use this revoke in one BD only?

On 7/27/07, Alvaro Herrera <alvherre@commandprompt.com> wrote:

Anderson Alves de Albuquerque  wrote:
> I need to use a user that can not have permission to create table in one
> BD.
>
> I use revoke,  I tray with "revoke all on database XXX to|from USERNAME;",
> but I don't have success.
>
> Could someone help me?

You have to revoke permissions from the _schema_, not from databases.
Say,

revoke all on schema PUBLIC FROM PUBLIC;
revoke all on schema PUBLIC FROM username;

You have to remove from PUBLIC because otherwise the user will still
have permissions to create via that privilege, even if you take his own
permission away (if he had one at all actually).

--
Alvaro Herrera                                http://www.CommandPrompt.com/
PostgreSQL Replication, Consulting, Custom Development, 24x7 support

--
.

pgsql-admin by date:

From: "George Wilk"
Date: 27 July 2007, 14:49:45
Subject: Checking database version

From: Richard Broersma Jr
Date: 27 July 2007, 15:19:14
Subject: Re: Checking database version

Re: No create table - Mailing list pgsql-admin

Previous

Next