PostgreSQL Role Management
PostgreSQL 數據庫管理
首先須要知道Pg的數據庫邏輯分層1. Database -> 2. Schema -> 3. Table; Pg 的用戶有1.Superuser 2. User Group 3. Userhtml
1. 建立用戶
create role name (create role 後面能夠有不少options, 下面舉一些例子 )sql
create role name login (用戶能夠connect database, default create cannot login; CREATE USER is equivalent to CREATE ROLE WITH LOGIN)數據庫
create role name with login createdb createrole (用戶能夠create role and create db )post
create role name with login password 'string'ui
alter role name password string設計
2. 建立Group
(這裏咱們建立group:test, 以及兩個role: dev1, dev2)postgresql
create role user_groupcode
create role dev1 with loginhtm
create role dev2 with login繼承
grant test to dev1 (向test添加成員)
-
grant test to dev2
lmy=# \du List of roles Role name | Attributes | Member of -----------+------------------------------------------------------------+----------- dev1 | | {test} dev2 | | {test} lmy | Superuser, Create role, Create DB, Replication, Bypass RLS | {} test | Cannot login | {} -
revoke test from dev2 (從test移出成員)
lmy=# revoke test from dev2; REVOKE ROLE lmy=# \du List of roles Role name | Attributes | Member of -----------+------------------------------------------------------------+----------- dev1 | | {test} dev2 | | {} lmy | Superuser, Create role, Create DB, Replication, Bypass RLS | {} test | Cannot login -
Group 的設計就是爲了方便權限的管理, 因此成員能夠繼承group的一些權限
屬性: superuser createdb createrole login password 是不會被繼承的
grant all on schema.table to role
grant all on all tables in schema schema to role
revoke all on schema.table to role
revoke all on all tables in schema schema to role
Database 管理
Pg的database 默認是任意能夠login 的role 均可以access, 若要進行限制
REVOKE connect ON DATABASE database FROM PUBLIC;
- 1. SAP S/4 HANA Cloud - User Role Management & Distribution
- 2. MongoDB Role Management Methods(角色管理)
- 3. 在Postgresql中添加新角色(Role)
- 4. The Role of AI Planning in the Management of Future Internet(review)
- 5. You must use the Role Management Tool to install or configure Microsoft .NET Framework 3.5 SP1
- 6. Operation Management(6Sigma Management)
- 7. Ansible Role
- 8. Role Helper
- 9. ansible-role
- 10. Role is not mapped [from Role],未映射
- 更多相關文章...
- • Lua 數據庫訪問 - Lua 教程
- • jQuery Mobile 頁面 - jQuery Mobile 教程
- • Tomcat學習筆記(史上最全tomcat學習筆記)
- • 三篇文章瞭解 TiDB 技術內幕——說存儲
-
每一个你不满意的现在,都有一个你没有努力的曾经。
- 1. js中 charCodeAt
- 2. Android中通過ViewHelper.setTranslationY實現View移動控制(NineOldAndroids開源項目)
- 3. 【Android】日常記錄:BottomNavigationView自定義樣式,修改點擊後圖片
- 4. maya 文件檢查 ui和數據分離 (一)
- 5. eclipse 修改項目的jdk版本
- 6. Android InputMethod設置
- 7. Simulink中Bus Selector出現很多? ? ?
- 8. 【Openfire筆記】啓動Mac版Openfire時提示「系統偏好設置錯誤」
- 9. AutoPLP在偏好標籤中的生產與應用
- 10. 數據庫關閉的四種方式
- 1. SAP S/4 HANA Cloud - User Role Management & Distribution
- 2. MongoDB Role Management Methods(角色管理)
- 3. 在Postgresql中添加新角色(Role)
- 4. The Role of AI Planning in the Management of Future Internet(review)
- 5. You must use the Role Management Tool to install or configure Microsoft .NET Framework 3.5 SP1
- 6. Operation Management(6Sigma Management)
- 7. Ansible Role
- 8. Role Helper
- 9. ansible-role
- 10. Role is not mapped [from Role],未映射