Permission ALTER PASSWORD
This is a discussion on Permission ALTER PASSWORD within the pgsql Admins forums, part of the PostgreSQL category; --> I have problem with permission, I need to use a user no SUPERUSER. I use commands: CREATE ROLE $USER ...
| |||||||
| Register | FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
04-10-2008, 08:04 AM
| ||||
| ||||
 Permission ALTER PASSWORD I have problem with permission, I need to use a user no SUPERUSER. I use commands: CREATE ROLE $USER LOGIN; ALTER user $USER noCREATEDB NOCREATEROLE noCREATEUSER NOINHERIT; ALTER USER $USER with password 'XX'; REVOKE create on SCHEMA public from public; revoke all on schema PUBLIC FROM $USER; With these commands MY user $USER don't have permission to create table and another thing. But I need that $USER can't have permission to change your password with: psql -d $BD -h $HOST -U $USER # ALTER $USER maluco with password 'YYY'; After user $USER execute this ALTER, it get change PASSWORD. Could I block command ALTER password to user $USER?      |
|
04-10-2008, 08:06 AM
| ||||
| ||||
| Re: [GENERAL] Permission ALTER PASSWORD On Wed, Aug 08, 2007 at 06:35:51PM -0300, Anderson Alves de Albuquerque wrote: > After user $USER execute this ALTER, it get change PASSWORD. Could I block > command ALTER password to user $USER? No, there's no way to do that. You might want to look at using ident-based authentication for that user instead. -- Decibel!, aka Jim Nasby decibel@decibel.org EnterpriseDB http://enterprisedb.com 512.569.9461 (cell) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.3 (FreeBSD) iD8DBQFGwyAjdO30qud8SkgRAiikAJ4phLVvmsQl7laHTTeTQG boPV3hTQCgiqr3 o6LzwltD9V9EI2aY1dYKhNQ= =yyFJ -----END PGP SIGNATURE----- |
Linear Mode
