Allow only certain query on replication slave
Hello,
I have a Postgres slave (wal replication) and want no query on it, expect
- SELECT pg_last_xlog_receive_location()
- SELECT pg_last_xlog_replay_location()
When I set hot_standby = off in postgres.conf nobody can query the
replication cluster.
Is there a way to allow only the above query and deny all other?
Best Regards,
basti
--
Sent via pgsql-general mailing list (pgsql-general@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-general
On Tue, Oct 24, 2017 at 6:12 AM, basti <mailinglist@unix-solution.de> wrote:
I have a Postgres slave (wal replication) and want no query on it, expect
- SELECT pg_last_xlog_receive_location()
- SELECT pg_last_xlog_replay_location()When I set hot_standby = off in postgres.conf nobody can query the
replication cluster.Is there a way to allow only the above query and deny all other?
There is a trick you could use here with two hooks: the planner hook
and the utility hook. The idea is to filter all queries and refuse
them when RecoveryInProgress() is satisfied. The parsed tree can be
used in the planner hook to check for those functions and accept them.
--
Michael
--
Sent via pgsql-general mailing list (pgsql-general@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-general
On Tue, Oct 24, 2017 at 8:12 AM, basti <mailinglist@unix-solution.de> wrote:
Is there a way to allow only the above query and deny all other?
Probably easiest to just configure your HBA to restrict all
connections/uses except the one that does your xlog query checks.
Don.
--
Don Seiler
www.seiler.us