The read-only user ro_user1 should be able perform queries against all tables owned by the schema schema1.
First, create the role common_users by logging onto the postgres (default) database
psql CREATE ROLE common_users WITH NOLOGIN NOSUPERUSER INHERIT NOCREATEDB NOCREATEROLE NOREPLICATION NOBYPASSRLS; GRANT pg_read_all_stats TO common_users;Then, create the user ro_user1:
create user ro_user1 password 'mysecretpassword'; grant common_users to ro_user1; grant connect on database db01 to ro_user1;Log into the database db01 and revoke and grant some privileges:
psql \connect db01 revoke all on schema schema1 from ro_user1; grant usage on schema schema1 to ro_user1; grant select on all tables in schema schema1 to ro_user1;Confirm the privileges:
\connect postgres select database_privs('ro_user1');
No comments:
Post a Comment