Re: Can I grant permissions to specific set of uids (linux) ?

2018-03-06 Thread David G. Johnston 
On Tue, Mar 6, 2018 at 1:26 PM, David Gauthier 
wrote:

> Hi:
>
> I'd like to grant select, insert, update, delete to a table for a specific
> set of uids (linux).  All others get select only.  Can the DB authenticate
> the current linux user and grant access based on the fact that they are
> logged in ()IOW, no passwords ?Is this possible ? If so, how ?
>
>
​see

https://www.postgresql.org/docs/10/static/auth-methods.html#AUTH-PEER

Note it authenticates by the name, not the numeric value.

​If that doesn't cover your need the answer to your question is probably no.

David J.

Re: Can I grant permissions to specific set of uids (linux) ?

2018-03-06 Thread Melvin Davidson 
On Tue, Mar 6, 2018 at 3:26 PM, David Gauthier 
wrote:

> Hi:
>
> I'd like to grant select, insert, update, delete to a table for a specific
> set of uids (linux).  All others get select only.  Can the DB authenticate
> the current linux user and grant access based on the fact that they are
> logged in ()IOW, no passwords ?Is this possible ? If so, how ?
>
> Thanks for any help
>


*> I'd like to grant select, insert, update, delete to a table for a
specific set of uids (linux). *


*PostgreSQL does not allow permissions based on uid's.*

*The accepted/implemented way of doing that is to:*

*1. CREATE the appropriate _user_ ROLEs.*

*2: Create a GROUP (role that cannot login)  with the permissions needed. *
*3. GRANT that GROUP/ROLE to the user ROLEs that need it.  -> *

*GRANT role_name [, ...] TO role_name [, ...] [ WITH ADMIN OPTION ]*






*https://www.postgresql.org/docs/current/static/sql-creategroup.html
https://www.postgresql.org/docs/current/static/sql-createrole.html
https://www.postgresql.org/docs/current/static/sql-grant.html
*--
*Melvin Davidson*
*Maj. Database & Exploration Specialist*
*Universe Exploration Command – UXC*
Employment by invitation only!