Re: [GENERAL] Restricted access on DataBases

Oh, WTF (Word Trade Fenster)! :-o PGAdmin did that! There are subdialog for Default Privileges, with Tables, and with ONLY ONE ROLE. This role is used after "TO". But nowhere role is used after "FOR"... Hm Thank you! 2016-10-04 12:57 GMT+02:00 Albe Laurenz

Re: [GENERAL] Restricted access on DataBases

Hello > > Also try this: > > ALTER DEFAULT PRIVILEGES FOR ex_mainuser GRANT INSERT, SELECT, UPDATE, > > DELETE, TRUNCATE, REFERENCES, TRIGGER > >ON TABLES TO ex_dbuser; > > > > You execute the ALTER DEFAULT PRIVILEGES as su, so the grant applies to > > objects created by su and

Re: [GENERAL] Restricted access on DataBases

Durumdara wrote: [...] > --- login with postgres: [...] > ALTER DEFAULT PRIVILEGES > GRANT INSERT, SELECT, UPDATE, DELETE, TRUNCATE, REFERENCES, TRIGGER > ON TABLES > TO u_tr_db; > > login with u_tr_main: > > create table t_canyouseeme_1 (k int); > >

Re: [GENERAL] Restricted access on DataBases

Dear Charles! Sorry for late answer. Now I got a little time to check this again... 2016-09-14 18:43 GMT+02:00 Charles Clavadetscher : > Hello > > > > > > Also try this: > > > > ALTER DEFAULT PRIVILEGES FOR ex_mainuser GRANT INSERT, SELECT, UPDATE, > DELETE,

Re: [GENERAL] Restricted access on DataBases

Hello From: pgsql-general-ow...@postgresql.org [mailto:pgsql-general-ow...@postgresql.org] On Behalf Of Durumdara Sent: Mittwoch, 14. September 2016 17:13 Cc: pgsql-general@postgresql.org Subject: Re: [GENERAL] Restricted access on DataBases Dear Adrian and Charles! I tried to create

Re: [GENERAL] Restricted access on DataBases

Dear Adrian and Charles! I tried to create a step by step instruction. The real commands are separated by ";" Other commands are: "login as username", "use db" I ran them in PGAdmin with changing the connection to simulate what I feel as problem. I suppused the ex_dbuser have owner rights to

Re: [GENERAL] Restricted access on DataBases

On 09/14/2016 06:52 AM, Durumdara wrote: Dear Charles! I thought before this test that mainuser get all rights as dbuser, so it have rights to the next (future) objects too. So mainuser and dbuser have equivalent rights in db database. Thanks for your every info! In my previous post I

Re: [GENERAL] Restricted access on DataBases

On 09/14/2016 06:52 AM, Durumdara wrote: Dear Charles! I checked your solution. For example: db - database dbuser, mainuser 1. dbuser own the database, and the objects in it. 2. mainuser member of dbuser. 3. public connection revoked. Ok. Then dbuser can see all tables, and mainuser too.

Re: [GENERAL] Restricted access on DataBases

Dear Charles! I checked your solution. For example: db - database dbuser, mainuser 1. dbuser own the database, and the objects in it. 2. mainuser member of dbuser. 3. public connection revoked. Ok. Then dbuser can see all tables, and mainuser too. Ok. The operation (overlord): 1. set role to

Re: [GENERAL] Restricted access on DataBases

Hello I did oversee the additional questions... On 09/07/2016 06:45 PM, Charles Clavadetscher wrote: Hello On 09/07/2016 03:24 PM, Durumdara wrote: Dear Everybody! I read the documentation based on your example. First reactions. 2016-09-05 18:25 GMT+02:00 Charles Clavadetscher

Re: [GENERAL] Restricted access on DataBases

Hello On 09/07/2016 03:24 PM, Durumdara wrote: Dear Everybody! I read the documentation based on your example. First reactions. 2016-09-05 18:25 GMT+02:00 Charles Clavadetscher >: GRANT us_a, us_b, us_c TO main_admin;

Re: [GENERAL] Restricted access on DataBases

Dear Everybody! I read the documentation based on your example. First reactions. 2016-09-05 18:25 GMT+02:00 Charles Clavadetscher : > >> GRANT us_a, us_b, us_c TO main_admin; >> > Ah, it's good. I can merge the "owner" rights to one. :-) It's like "doubling"! :-)

Re: [GENERAL] Restricted access on DataBases

Dear Everybody! I'm sorry because lack of answer - I try to do it now. 2016-09-05 16:19 GMT+02:00 Adrian Klaver : > On 09/05/2016 05:45 AM, Durumdara wrote: > >> Dear PG-masters! >> >> We want to put more databases to one server, to "public" schema: >> DB_A, DB_B,

Re: [GENERAL] Restricted access on DataBases

Hello On 09/05/2016 05:56 PM, Charles Clavadetscher wrote: Hello On 09/05/2016 04:19 PM, Adrian Klaver wrote: On 09/05/2016 05:45 AM, Durumdara wrote: Dear PG-masters! We want to put more databases to one server, to "public" schema: DB_A, DB_B, DB_C. The PUBLIC schema is contained within

Re: [GENERAL] Restricted access on DataBases

Hello, On Mon, 2016-09-05 at 14:45 +0200, Durumdara wrote: > Dear PG-masters! > > We want to put more databases to one server, to "public" schema: > DB_A, DB_B, DB_C. > And users: > US_A, US_B, US_C, and Main_Admin. > We want to setup the environment. > Every simple user can access his database:

Re: [GENERAL] Restricted access on DataBases

Hello On 09/05/2016 04:19 PM, Adrian Klaver wrote: On 09/05/2016 05:45 AM, Durumdara wrote: Dear PG-masters! We want to put more databases to one server, to "public" schema: DB_A, DB_B, DB_C. The PUBLIC schema is contained within a database not the other way around, so further explanation

Re: [GENERAL] Restricted access on DataBases

On 09/05/2016 05:45 AM, Durumdara wrote: Dear PG-masters! We want to put more databases to one server, to "public" schema: DB_A, DB_B, DB_C. The PUBLIC schema is contained within a database not the other way around, so further explanation is necessary. And users: US_A, US_B, US_C, and

Re: [GENERAL] Restricted access on DataBases

I think, it worth to try pg_hba.conf configuration[1]. [1]. https://www.postgresql.org/docs/current/static/auth-pg-hba-conf.html Regards, Amul Sul On Mon, Sep 5, 2016 at 6:15 PM, Durumdara wrote: > Dear PG-masters! > > We want to put more databases to one server, to

[GENERAL] Restricted access on DataBases

Dear PG-masters! We want to put more databases to one server, to "public" schema: DB_A, DB_B, DB_C. And users: US_A, US_B, US_C, and Main_Admin. We want to setup the environment. Every simple user can access his database: DB_A - US_A DB_B - US_B DB_C - US_C They can't access other databases only