Home > mailing lists

Re: GRANT role_name TO role_name ON database_name - Mailing list pgsql-hackers

From	Albe Laurenz
Subject	Re: GRANT role_name TO role_name ON database_name
Date	May 29, 2013 15:17:34
Msg-id	A737B7A37273E048B164557ADEF4A58B13C950BE@ntex2010i.host.magwien.gv.at Whole thread Raw
In response to	Re: GRANT role_name TO role_name ON database_name ("Clark C. Evans" <cce@clarkevans.com>)
Responses	Re: GRANT role_name TO role_name ON database_name
List	pgsql-hackers

Tree view

Clark C. Evans wrote:
>>> I'd really love the ability to grant a *user*
>>> role-based privileges database by database.
>>
>> The only cluster-wide role permissions are the options
>> SUPERUSER, CREATEDB, CREATEROLE, INHERIT,
>> LOGIN and REPLICATION.
> 
> Incorrect; role-to-role membership (different from INHERIT)
> is also a cluster-wide role permission.   Hence, I have no
> way to assign a user "auditor" role in one database, and not
> grant that same user "auditor" role in another database.

Now I understand what you want.

Maybe the db_user_namespace parameter can help:
http://www.postgresql.org/docs/9.2/static/runtime-config-connection.html#GUC-DB-USER-NAMESPACE

Yours,
Laurenz Albe

pgsql-hackers by date:

From: "Clark C. Evans"
Date: 29 May 2013, 14:49:53
Subject: Re: GRANT role_name TO role_name ON database_name

From: Dimitri Fontaine
Date: 29 May 2013, 15:52:57
Subject: Re: pg_dump with postgis extension dumps rules separately

Re: GRANT role_name TO role_name ON database_name - Mailing list pgsql-hackers

Previous

Next