Bookmarks

Yahoo Gmail Google Facebook Delicious Twitter Reddit Stumpleupon Myspace Digg

Search queries

nrao wwwxxx, xxxxxdup, procmail change subject header, wwwXxx not20, Wwwxxx.doks sas, linux raid resync after reboot, bind-address mysql multiple, sanibleone xxxx, ftp://192.168.100.100/, www.xxxcon

Links

XODOX
Impressum

#1: Couple of admin Qs

Posted on 2010-08-20 14:46:42 by Lou Picciano

------=_Part_247710_196141271.1282308402599
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit

Pg Admins,


As many of you have done these things already (and yes, I have to dig further into the docs...)


- Is there a privileges incantation which will limit a user's view, within a given cluster, to only those databases to which he can connect? Ie, he'd see only the 3 or 4 databases to which he has privileges? Does the privileges model permit this level of granularity?


- Can someone point to an example of how to 'trigger' an event when a user logs on/off, or performs other non-data-touching actions, such as connecting to another database? Can't build a trigger on a function call, right? Has to be based on a data change?


Tks in advance - Lou
------=_Part_247710_196141271.1282308402599
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: 7bit

<html><head><style type='text/css'>p { margin: 0; }</style></head><body><div style='font-family: Verdana; font-size: 12pt; color: #000000'>Pg Admins,<div><br></div><div>As many of you have done these things already (and yes, I have to dig further into the docs...)</div><div><br></div><div>- Is there a privileges incantation which will limit a user's view, within a given cluster, to only those databases to which he can connect? &nbsp;Ie, he'd see only the 3 or 4 databases to which he has privileges? &nbsp;Does the privileges model permit this level of granularity?</div><div><br></div><div>- Can someone point to an example of how to 'trigger' an event when a user logs on/off, or performs other non-data-touching actions, such as connecting to another database? &nbsp;Can't build a trigger on a
function call, right? &nbsp;Has to be based on a data change?</div><div><br></div><div>Tks in advance - Lou</div></div></body></html>
------=_Part_247710_196141271.1282308402599--

Report this message

#2: Re: Couple of admin Qs

Posted on 2010-08-20 18:07:55 by Kevin Grittner

Lou Picciano <loupicciano@comcast.net> wrote:

> - Is there a privileges incantation which will limit a user's
> view, within a given cluster, to only those databases to which he
> can connect? Ie, he'd see only the 3 or 4 databases to which he
> has privileges? Does the privileges model permit this level of
> granularity?

No. Perhaps some day, when we get row-level permissions....

> - Can someone point to an example of how to 'trigger' an event
> when a user logs on/off, or performs other non-data-touching
> actions, such as connecting to another database?

There might be a hook, but those aren't really covered in user
documentation, since they're intended more for people writing
features for the database itself. I've never gone looking for
those, since I don't have an application for them, so I don't really
know.

> Can't build a trigger on a function call, right? Has to
> be based on a data change?

Well, a trigger is just a way to automatically call a function. You
can do that within any particular function without needing to wire
it up with a trigger definition.

-Kevin

--
Sent via pgsql-admin mailing list (pgsql-admin@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-admin

Report this message

#3: Re: Couple of admin Qs

Posted on 2010-08-20 18:28:59 by Joshua Drake

On Fri, 2010-08-20 at 12:46 +0000, Lou Picciano wrote:
> Pg Admins,
>
>
> As many of you have done these things already (and yes, I have to dig
> further into the docs...)
>
>
> - Is there a privileges incantation which will limit a user's view,
> within a given cluster, to only those databases to which he can
> connect? Ie, he'd see only the 3 or 4 databases to which he has
> privileges? Does the privileges model permit this level of
> granularity?

They will be able to see every database but they won't be able to
connect unless you allow them, i.e; you can't stop them from executing
select * from pg_database but you can't stop them from actually
connecting to any of them.


> - Can someone point to an example of how to 'trigger' an event when a
> user logs on/off, or performs other non-data-touching actions, such as
> connecting to another database?

That is called logging. Just turn it on :D

> Can't build a trigger on a function call, right? Has to be based on
> a data change?

A trigger is based on data modification, yes.

Joshua D. Drake

>
>
> Tks in advance - Lou

--
PostgreSQL.org Major Contributor
Command Prompt, Inc: http://www.commandprompt.com/ - 509.416.6579
Consulting, Training, Support, Custom Development, Engineering
http://twitter.com/cmdpromptinc | http://identi.ca/commandprompt


--
Sent via pgsql-admin mailing list (pgsql-admin@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-admin

Report this message