> On 04/05/2023 01:07 CEST M Sarwar <sarwarmd02@xxxxxxxxxxx> wrote: > > I want user u2 to have only CREATE VIEW privilege in schema s2. I do not want > u2 to create any other type of objects in s2 schema. You can setup a second database db2 just for u2 and have them access your database db1 via foreign tables. u2 still only has the SELECT privilege in db1 but can create objects in db2 and mess it up as they see fit. If you go with a single database and event triggers as Tom wrote you must also consider function security[0]. Otherwise u2 can override relations in s1 just by creating compatible views in s2 and set search_path=s2,s1. u2 can thus inject data into functions that have no explicit search_path. [0] https://www.postgresql.org/docs/current/perm-functions.html -- Erik
