| From: | Sim Zacks <sim(at)compulab(dot)co(dot)il> |
|---|---|
| To: | pgsql-general(at)postgresql(dot)org |
| Subject: | Re: Disallow access from psql, or allow access only from specific client app |
| Date: | 2011-07-25 13:08:53 |
| Message-ID: | 4E2D6AE5.1000106@compulab.co.il |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
A lot of applications don't actually have a database role per user.
There is an application user who logs into the database and the
application handles application logins through a users table in the
database. That way the only thing that the user has access to is the
application and not the database.
If you access the database through an application server, or server side
script, you can limit access to only that (and other specific) IP
addresses in the pg_hba.conf.
Sim
On 07/25/2011 02:56 PM, Mario Puntin wrote:
> Thanks a lot to everybody for the replies.
>
> Kurt: by the term "client" I meant an application, like psql, from
> which users could connect to the database, as they have a
> user/password, and manipulate data. I want them to access from
> certain, specific application, but I don't want them to install psql,
> for example, and have also access through it.
>
> I liked Chris Carver idea of modifing user/password: quite simple and
> efective.
> But thank you all people, you gave me some fine ideas.
>
> Best regards,
> Mario
>
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Achilleas Mantzios | 2011-07-25 13:38:48 | Re: Disallow access from psql, or allow access only from specific client app |
| Previous Message | Yan Chunlu | 2011-07-25 12:44:20 | Re: streaming replication does not work across datacenter with 20ms latency? |