Postgres Pro
Downloads
Home   >   mailing lists

Re: GRANT role_name TO role_name ON database_name - Mailing list pgsql-hackers

From Albe Laurenz
Subject Re: GRANT role_name TO role_name ON database_name
Date
Msg-id A737B7A37273E048B164557ADEF4A58B13C950BE@ntex2010i.host.magwien.gv.at
Whole thread Raw
In response to Re: GRANT role_name TO role_name ON database_name  ("Clark C. Evans" <cce@clarkevans.com>)
Responses Re: GRANT role_name TO role_name ON database_name  (Stephen Frost <sfrost@snowman.net>)
List pgsql-hackers
Tree view 
Clark C. Evans wrote:
>>> I'd really love the ability to grant a *user*
>>> role-based privileges database by database.
>>
>> The only cluster-wide role permissions are the options
>> SUPERUSER, CREATEDB, CREATEROLE, INHERIT,
>> LOGIN and REPLICATION.
> 
> Incorrect; role-to-role membership (different from INHERIT)
> is also a cluster-wide role permission.   Hence, I have no
> way to assign a user "auditor" role in one database, and not
> grant that same user "auditor" role in another database.

Now I understand what you want.

Maybe the db_user_namespace parameter can help:
http://www.postgresql.org/docs/9.2/static/runtime-config-connection.html#GUC-DB-USER-NAMESPACE

Yours,
Laurenz Albe

pgsql-hackers by date:

Previous
From: "Clark C. Evans"
Date:
Subject: Re: GRANT role_name TO role_name ON database_name
Next
From: Dimitri Fontaine
Date:
Subject: Re: pg_dump with postgis extension dumps rules separately