Thread: [pgadmin-support] pgadmin4 login page
Is there way to setup a login page for pgadmin4? I am not seeing how to do this. Currently, if a user goes to the URL they aren't required to authenticate to use pgadmin4. If someone adds a database and saves the password, then any user with the URL to pgadmin4 can manipulate that database.
Thanks for the help.
I'm a newbie at DB admin and have been trying to understand similar issues. So the following might not be completely right; but hopefully it's a step in the right direction and someone with more experience can amplify or correct.
My sense is that what PostgreSQL expects you to do is to GRANT permissions to specific users for specific actions. If someone can make changes from pgAdmin that you don't think they should be allowed to make, it presumably indicates that permissions have been GRANTed them in the underlying DB that shouldn't have been.
I find that if I run pgAdmin as a "regular" user and then try to do something that only a privileged user can do, I get a login screen to enter the "postgres" password. Right now, the only users I have are peons and postgres, so I don't know how this extends to those with intermediate levels of privilege.
-P.
Hi,
pgAdmin 4 can be deployed in 2 ways.
- Desktop Runtime (as per your email, you are using this mode), which is single user mode.
- Web application, through which you can configure users profile.
Please go through the documentation https://www.pgadmin.org/docs4/1.x/getting_started.html to configure pgAdmin 4 as per your requirement.
Useful links:
Thanks,
Khushboo
On Tue, May 9, 2017 at 2:15 AM, Brent Vaughn <Vaughn@climatecontrolgroup.com> wrote:
Is there way to setup a login page for pgadmin4? I am not seeing how to do this. Currently, if a user goes to the URL they aren't required to authenticate to use pgadmin4. If someone adds a database and saves the password, then any user with the URL to pgadmin4 can manipulate that database.
Thanks for the help.