Home > mailing lists

Re: SuperUser check in pg_stat_statements - Mailing list pgsql-hackers

From	Lukas Fittl
Subject	Re: SuperUser check in pg_stat_statements
Date	October 20, 2015 01:19:08
Msg-id	CAP53Pkw-7oZBrhBBB7_U=ijQcuReSxzwW27j44yX7t9gKPC64Q@mail.gmail.com Whole thread Raw
In response to	Re: SuperUser check in pg_stat_statements (Jim Nasby <Jim.Nasby@BlueTreble.com>)
Responses	Re: SuperUser check in pg_stat_statements (rajan <vgmonnet@gmail.com>)
List	pgsql-hackers

Tree view

On Mon, Oct 19, 2015 at 3:12 PM, Jim Nasby <Jim.Nasby@bluetreble.com> wrote:

On 10/19/15 3:48 PM, rajan wrote:
Thanks Stephen and Shulgin for your response.

Will go through the patch and will try to solve my problem using that.

My scenario is that i need to have an user who cannot be a super user but a
monitor user, who will be able to see all the queries executed by all users.

You can set that up today by defining a view on top of pg_stat_statements (or maybe it needs a SECDEF SRF... been a while since I've done it).

You can solve this using a security definer method created by a superuser, see

https://gist.github.com/lfittl/9ee78ac200e4e7ebe33d

for a full example.

Lukas Fittl

Skype: lfittl
Phone: +1 415 321 0630

pgsql-hackers by date:

From: Jim Nasby
Date: 20 October 2015, 01:16:35
Subject: Re: Why no CONSTANT for row variables in plpgsql?

From: Jim Nasby
Date: 20 October 2015, 02:55:43
Subject: Re: Why no CONSTANT for row variables in plpgsql?

Re: SuperUser check in pg_stat_statements - Mailing list pgsql-hackers

Previous

Next