Home > mailing lists

Re: Prevent users from executing pg_dump against tables - Mailing list pgsql-general

From	Kashif Zeeshan
Subject	Re: Prevent users from executing pg_dump against tables
Date	May 2 09:11:55
Msg-id	CAAPsdhcYUEnhx51Mq9DKkXve=Twg=n8cKMa95Lfjzy4H8_+jdQ@mail.gmail.com Whole thread Raw
In response to	Prevent users from executing pg_dump against tables (RAJAMOHAN <garajamohan@gmail.com>)
List	pgsql-general

Tree view

Hi RAJAMOHAN

There is not a direct way to restrict a table not to be allowed to be backed up by pg_dump.

But you can use the RLS (ROW LEVEL SECURITY) policy to restrict access.

Regards

Kashif Zeeshan

Bitnine Global

On Thu, May 2, 2024 at 10:47 AM RAJAMOHAN <garajamohan@gmail.com> wrote:

Hello all,

In our production db infrastructure, we have one read_only role which has read privileges against all tables in schema A.

We are planning to grant this role to some developers for viewing the data, but also I want to limit the users from executing statements like copy or using pg_dump. Main reason being I don't want the data to be copied from the database to their local machines.

I tried by implementing triggers, but was not able to figure out a way to restrict the pg_dump and allow only select statements.

Postgresql version - 12
Ec2 based postgres database

Is there a way to implement this? Please advise.

Thanks & Regards,
Rajamohan.J
Devops Cloud Architect
Email:garajamohan@gmail.com

pgsql-general by date:

From: RAJAMOHAN
Date: 02 May, 08:46:42
Subject: Prevent users from executing pg_dump against tables

From: Fire Emerald
Date: 02 May, 12:20:48
Subject: Re: How to interpret 'depends on' errors in pg_restore?

Re: Prevent users from executing pg_dump against tables - Mailing list pgsql-general

Previous

Next