Re: How to allow users to log on only from my application not from pgadmin

Поиск
Список
Период
Сортировка
От Bruno Wolff III
Тема Re: How to allow users to log on only from my application not from pgadmin
Дата
Msg-id 20070130190603.GA13616@wolff.to
обсуждение исходный текст
Ответ на How to allow users to log on only from my application not from pgadmin  ("Andrus" <kobruleht2@hot.ee>)
Ответы Re: How to allow users to log on only from my application not from pgadmin  (Raymond O'Donnell <rod@iol.ie>)
Список pgsql-general
Дерево обсуждения 
On Sun, Jan 28, 2007 at 23:46:27 +0200,
  Andrus <kobruleht2@hot.ee> wrote:
> My application implements field and row level security.
> I have custom table of users where user privileges are described.
>
> However user can login directly to database using pgAdmin. This bypasses
> the security.
>
> How to allow users to login only from my application ?
> I think I must create server-side pgsql procedure for login validation.

Run the application on a machine you control. Then the application can
authenticate without the users being able to steal or piggyback on its
credentials.

В списке pgsql-general по дате отправления:

Предыдущее
От: Mark Walker
Дата:
Сообщение: Re: Problem loading pg_dump file
Следующее
От: Tony Caduto
Дата:
Сообщение: Re: Any Plans for cross database queries on the same server?