Home > mailing lists

Re: Grant SELECT/Execute to View/Function but not underlying Table - Mailing list pgsql-general

From	Maxim Boguk
Subject	Re: Grant SELECT/Execute to View/Function but not underlying Table
Date	September 24, 2015 14:48:04
Msg-id	CAK-MWwT2Hzk1ZBGfOXa7=f98TRZiRFFF3eDG0PCcb-VXXnFMWA@mail.gmail.com Whole thread Raw
In response to	Grant SELECT/Execute to View/Function but not underlying Table (Alex Magnum <magnum11200@gmail.com>)
Responses	Re: Grant SELECT/Execute to View/Function but not underlying Table
List	pgsql-general

Tree view

On Thu, Sep 24, 2015 at 9:28 PM, Alex Magnum <magnum11200@gmail.com> wrote:

Hi,
is it possible to grant select to views and functions without the need to also grant the user the SELECT privileges to the Tables used in the views or functions?

That way I could create read only users on a website and limit their access to the bare minimum.

Thanks in advance for any advise on this

Alex

​Hi,

For functions it's possible (read about SECURITY DEFINER), for view no it isn't possible (view is query text stored in database for future use and nothing more).

​

Maxim Boguk
Senior Postgresql DBA
http://www.postgresql-consulting.ru/

pgsql-general by date:

From: Alex Magnum
Date: 24 September 2015, 14:28:20
Subject: Grant SELECT/Execute to View/Function but not underlying Table

From: "David G. Johnston"
Date: 24 September 2015, 14:50:02
Subject: Re: Grant SELECT/Execute to View/Function but not underlying Table

Re: Grant SELECT/Execute to View/Function but not underlying Table - Mailing list pgsql-general

Previous

Next