Re: [GENERAL] Limiting DB access by role after initial connection?

Поиск
Список
Период
Сортировка
От Joe Conway
Тема Re: [GENERAL] Limiting DB access by role after initial connection?
Дата
Msg-id d807c13e-78d3-9631-896c-3fe8a70bd7ed@joeconway.com
обсуждение исходный текст
Ответ на [GENERAL] Limiting DB access by role after initial connection?  (Ken Tanzer <ken.tanzer@gmail.com>)
Ответы Re: [GENERAL] Limiting DB access by role after initial connection?
Список pgsql-general
Дерево обсуждения 
On 06/08/2017 10:37 PM, Ken Tanzer wrote:
> My approach was to have the initial connection made by the owner, and
> then after successfully authenticating the user, to switch to the role
> of the site they belong to.  After investigation, this still seems
> feasible but imperfect.  Specifically, I thought it would be possible to
> configure such that after changing to a more restricted role, it would
> not be possible to change back.  But after seeing this thread
> (http://www.postgresql-archive.org/Irreversible-SET-ROLE-td5828828.html), I'm
> gathering that this is not the case.

See set_user for a possible solution: https://github.com/pgaudit/

HTH,

Joe

--
Crunchy Data - http://crunchydata.com
PostgreSQL Support for Secure Enterprises
Consulting, Training, & Open Source Development
Вложения

В списке pgsql-general по дате отправления:

Предыдущее
От: Achilleas Mantzios
Дата:
Сообщение: Re: [GENERAL] ERROR: unexpected chunk number 0 (expected 1) for toastvalue 76753264 in pg_toast_10920100
Следующее
От: Bruce Momjian
Дата:
Сообщение: Re: [GENERAL] pg_upgrade --link on Windows