[GENERAL] Row security policies documentation question

Hello, Section 5.7. on Row Security Policies (https://www.postgresql.org/docs/current/static/ddl-rowsecurity.html) for 9.5 says: As a simple example, here is how to create a policy on the account relation to allow only members of the managers role to access rows, and only rows of their accoun

Re: [GENERAL] Row security policies documentation question

> On May 31, 2016, at 5:16 PM, David G. Johnston > wrote: > > On Tue, May 31, 2016 at 4:59 PM, Alexander M. Sauer-Budge > mailto:ambu...@alum.mit.edu>> wrote: > Hello, > > Section 5.7. on Row Security Policies > (https://www.postgresql.org/docs/current/stat

Re: [GENERAL] Row security policies documentation question

> On May 31, 2016, at 7:48 PM, Adrian Klaver wrote: > > For a good review of what is possible with RLS take a look at this blog: > > http://blog.2ndquadrant.com/application-users-vs-row-level-security/ > Fantastic! Thanks!

[GENERAL] Restrict CREATEROLE privilege grant to NOLOGIN only?

Is it possible to create a login user who themselves can CREATE ROLE NOLOGIN but not CREATE ROLE LOGIN? Here’s an example of the behavior I’d like to achieve. $ psql postgres=> CREATE USER admin WITH PASSWORD 'mypassword' CREATEROLE; postgres=> — revoke something? postgres=> \q $ psql -U admin

Re: [GENERAL] Not clear how to switch role without permitting switch back

> On Jan 10, 2017, at 2:05 AM, Guyren Howe > wrote: > > For my Love Your Database Project: > > https://medium.com/@gisborne/love-your-database-lydb-23c69f480a1d#.8g1ezwx6r > > > I’m trying

Re: [GENERAL] Not clear how to switch role without permitting switch back

> On Jan 10, 2017, at 2:05 AM, Guyren Howe wrote: > > For my Love Your Database Project: > > https://medium.com/@gisborne/love-your-database-lydb-23c69f480a1d#.8g1ezwx6r > > > I’m trying to see how a typical web de