isn't it possible to restrict UPDATE by access rights based on the DB's user?
Create table with owner set to the administrator of the database (NOT PostgreSQL SERVER!!!) and grant only the needed rights (or none of them) to the user from which the usual processing of the database will be performed. Then, create a trigger function with SECURITY DEFINER set and own it by the owner of the database (or other user, who's granted to UPDATE the table). So, if no one else is granted UPDATE on the table, the only UPDATE-modifiers of the table will be the owner and the trigger function's owner (if differs from owner).
Thank you for explaining this. I haven't done much with rights within the database, but it seems you have explained how to do exactly what I had been considering as the "rights"-oriented solution to my problem.
Best regards, Andrey V. Semyonov
Take care, Shawn Harrison -- ________________ harrison@xxxxxxx
---------------------------(end of broadcast)---------------------------
TIP 3: if posting/reading through Usenet, please send an appropriate
subscribe-nomail command to majordomo@xxxxxxxxxxxxxx so that your
message can get through to the mailing list cleanly
