Search Postgresql Archives

Can Pg somehow recognize/honor linux groups to control user access ?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hi:

The title says it all.  I need to be control who can gain access to a DB based on a linux user group.  I can set up a generic role and password, but also want to prevent users who are not in a specific linux group from accessing the DB.  For code that works with the DB, this is easy (just chmod the group on the code file(s)).  But is there a way to add an additional gauntlet that checks membership in the linux group if, for example, they were trying to get in using psql at the linux prompt ?

There are a couple hundred in the linux group and the list of names changes constantly. I suppose creating a DB role per user in the linux group may be possible if something like a cron was maintaining this (creating/dropping uid based roles as the group membership changes) then give everyone the same password.  But does that prevent someone outside the linux group from just logging in with someone else's uid and the generic password?
 
I'm hoping that this is a common need and that someone has a good solution.

Thanks in Advance for any help!

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Postgresql Jobs]     [Postgresql Admin]     [Postgresql Performance]     [Linux Clusters]     [PHP Home]     [PHP on Windows]     [Kernel Newbies]     [PHP Classes]     [PHP Books]     [PHP Databases]     [Postgresql & PHP]     [Yosemite]

  Powered by Linux