Postgres Pro
Downloads
Home   >   mailing lists

Thread: Can I grant permissions to specific set of uids (linux) ?

Can I grant permissions to specific set of uids (linux) ?

From
David Gauthier
Date:
Hi:

I'd like to grant select, insert, update, delete to a table for a specific set of uids (linux).  All others get select only.  Can the DB authenticate the current linux user and grant access based on the fact that they are logged in ()IOW, no passwords ?    Is this possible ? If so, how ?

Thanks for any help

Re: Can I grant permissions to specific set of uids (linux) ?

From
Melvin Davidson
Date:


On Tue, Mar 6, 2018 at 3:26 PM, David Gauthier <davegauthierpg@gmail.com> wrote:
Hi:

I'd like to grant select, insert, update, delete to a table for a specific set of uids (linux).  All others get select only.  Can the DB authenticate the current linux user and grant access based on the fact that they are logged in ()IOW, no passwords ?    Is this possible ? If so, how ?

Thanks for any help
 
> I'd like to grant select, insert, update, delete to a table for a specific set of uids (linux).

PostgreSQL does not allow permissions based on uid's.
The accepted/implemented way of doing that is to:
1. CREATE the appropriate _user_ ROLEs.
2: Create a GROUP (role that cannot login)  with the permissions needed.
3. GRANT that GROUP/ROLE to the user ROLEs that need it.  -> 
GRANT role_name [, ...] TO role_name [, ...] [ WITH ADMIN OPTION ]
https://www.postgresql.org/docs/current/static/sql-creategroup.html

https://www.postgresql.org/docs/current/static/sql-createrole.html

https://www.postgresql.org/docs/current/static/sql-grant.html
--
Melvin Davidson
Maj. Database & Exploration Specialist
Universe Exploration Command – UXC
Employment by invitation only!

Re: Can I grant permissions to specific set of uids (linux) ?

From
"David G. Johnston"
Date:
On Tue, Mar 6, 2018 at 1:26 PM, David Gauthier <davegauthierpg@gmail.com> wrote:
Hi:

I'd like to grant select, insert, update, delete to a table for a specific set of uids (linux).  All others get select only.  Can the DB authenticate the current linux user and grant access based on the fact that they are logged in ()IOW, no passwords ?    Is this possible ? If so, how ?


​see

https://www.postgresql.org/docs/10/static/auth-methods.html#AUTH-PEER

Note it authenticates by the name, not the numeric value.

​If that doesn't cover your need the answer to your question is probably no.

David J.