Check the threads a month or so ago this was discussed in depth.
Basically postgres uses security through the views and you grant
permissions to users for the specific views.
Darren Ferguson
On Wed, 27 Mar 2002, Marin Dimitrov wrote:
>
> Hi,
>
> it seems that there is no security management related to functions in the
> database (I couldn't find much info in the docs)
>
> the GRANT operator does not accept function objects, furthermore any
> database user is able to execute any other user's functions
>
> shouldn't privileges be associated with functions too ? (similar to GRANT
> EXECUTE in Oracle)
>
> thanx,
>
> Marin
>
> ----
> "...what you brought from your past, is of no use in your present. When
> you must choose a new path, do not bring old experiences with you.
> Those who strike out afresh, but who attempt to retain a little of the
> old life, end up torn apart by their own memories. "
>
>
>
>
> ---------------------------(end of broadcast)---------------------------
> TIP 3: if posting/reading through Usenet, please send an appropriate
> subscribe-nomail command to majordomo@postgresql.org so that your
> message can get through to the mailing list cleanly
>
