Search Postgresql Archives

Re: connect permission based on database name

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Wednesday, May 25, 2022, Rob Sargent <robjsargent@xxxxxxxxx> wrote:
On 5/25/22 08:20, Tom Lane wrote:
Rob Sargent <robjsargent@xxxxxxxxx> writes:

Just wondering if I've bumped into some security issue.
I'm somewhat surprised that "grant connect to database <dbname>  to 
<role>" appears to be stored "by name"?

I think you are forgetting that databases have a default GRANT CONNECT
TO PUBLIC.  You need to revoke that before other grants/revokes will
have any functional effect.

			regards, tom lane
And then the search path is "just a string"?


Search_path isn’t a security component and accepts, but ignores, unknown names.  So yes, it is just a string.

David J.
 
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Postgresql Jobs]     [Postgresql Admin]     [Postgresql Performance]     [Linux Clusters]     [PHP Home]     [PHP on Windows]     [Kernel Newbies]     [PHP Classes]     [PHP Databases]     [Postgresql & PHP]     [Yosemite]

  Powered by Linux