472,127 Members | 1,663 Online
Bytes | Software Development & Data Engineering Community
Post +

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 472,127 software developers and data experts.

Howto handle views/Rules Privileges


Situation two schemas:

webviews: Contains a set of views with insert rules on them, accessed
via a GUI.
devconf: "Business logic", all the tables, functions, triggers that I
want to restrict access to as far as possible.Preferably, I wouldn't
even grant usage to the schema.

I have a problem with the insert rules on the views :

The inserts triggered by the rules are executed with view owner
privileges, but unfortunately any functions, triggers, sequence updates
that are invoked by the rule NOT.

How do I solve this ?
My solution right now is to do "security definer" on all triggers and
functions invoked by the rules, and to grant update privileges for the
sequences. I hope there is a better way.

Thanks in advance for any comments and suggestions,


---------------------------(end of broadcast)---------------------------
TIP 2: you can get off all lists at once with the unregister command
(send "unregister YourEmailAddressHere" to ma*******@postgresql.org)

Nov 23 '05 #1
0 932

This discussion thread is closed

Replies have been disabled for this discussion.

Similar topics

3 posts views Thread by jimstallings | last post: by
8 posts views Thread by Martijn van Oosterhout | last post: by
1 post views Thread by Alberto Cabello Sanchez | last post: by
2 posts views Thread by rhodesm_groups | last post: by
6 posts views Thread by Ian Boyd | last post: by
reply views Thread by leo001 | last post: by

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.