Hallo,
> I like to create a user who can do the followings on a table: select,
> insert, update
> But he can't delete!
> I tried this: grant INSERT, SELECT, UPDATE on table_name to testuser;
> After this the test user can delete from the table_name table without any
> problems. The testuser is not a superuser.
GRANT UPDATE and GRANT DELETE are commands with the same result in the
system tables: They modify both the "w" component in the relacl attribute
of pg_class! As result of this undocumented design bug you can't deny
UPDATE's but allow DELETE's and vice versa.
Gerald Fiedler