On Mon, Aug 30, 2021 at 5:24 PM Vijaykumar Jain
<vijaykumarjain.github@gmail.com> wrote:
>
> On Mon, 30 Aug 2021 at 14:39, Julien Rouhaud <rjuju123@gmail.com> wrote:
>>
>>
>> The easy way around that is to track those events yourself with the
>> rules that suit your needs, which can be done easily using an event
>> trigger.
>
>
> Please correct me if I am missing anything, but the doc said, event triggers are not allowed on global objects.
> PostgreSQL: Documentation: 13: 39.2. Event Trigger Firing Matrix
Ah right, sorry about that.
> Anyways, I think the options were using external mechanisms to role audits, or pgaudit via statement logging ?
You could also periodically check for new user creation, or write a
dedicated module using ProcessUtility_hook which could allow you to do
something for each CREATE/DROP/ALTER ROLE (or any other utility
statement).
