Participants
Chirag Karkera
Chirag Karkera
David G. Johnston
David G. Johnston
Attachments

No attachments in this thread

Thread Outline
#1Chirag KarkeraChirag Karkera
May 17, 2022
#2David G. JohnstonDavid G. Johnstonto Chirag Karkera (#1)
May 17, 2022
#3Chirag KarkeraChirag Karkerato David G. Johnston (#2)
May 17, 2022
#4David G. JohnstonDavid G. Johnstonto Chirag Karkera (#3)
May 17, 2022
#5Chirag KarkeraChirag Karkerato David G. Johnston (#4)
May 17, 2022

Provide read-only access to system catalog tables

Started by Chirag Karkeraover 3 years ago5 messages
#1Chirag Karkera
Chirag Karkera
chiragkrkr102@gmail.com

Hi Team,

Appreciate your time to look into this.

I have a requirement, where a user has to be provided DDL access on the
schema (which is provided to the user) and as there is some development
work in process the user has to be provided the read only access on system
catalog tables (information_schema and pg_catalog)

I have surfed a lot of materials online, but did not get any solution for
the same.

Request you to share some valuable input on this.

Thank You.

Regards,
Chirag Karkera

#2David G. Johnston
David G. Johnston
david.g.johnston@gmail.com
In reply to: Chirag Karkera (#1)
Re: Provide read-only access to system catalog tables

On Tuesday, May 17, 2022, Chirag Karkera <chiragkrkr102@gmail.com> wrote:

the user has to be provided the read only access on system catalog tables
(information_schema and pg_catalog)

All roles have this, no action required.

David J.

#3Chirag Karkera
Chirag Karkera
chiragkrkr102@gmail.com
In reply to: David G. Johnston (#2)
Re: Provide read-only access to system catalog tables

Thanks David for your reply!

But when i created a role i am not able to view objects under
information_schema.*

I mean I am not able to view the data, I can see only the column names.

Thanks.

Regards,
Chirag Karkera

On Tue, May 17, 2022 at 6:40 PM David G. Johnston <
david.g.johnston@gmail.com> wrote:

Show quoted text

On Tuesday, May 17, 2022, Chirag Karkera <chiragkrkr102@gmail.com> wrote:

the user has to be provided the read only access on system catalog tables
(information_schema and pg_catalog)

All roles have this, no action required.

David J.

#4David G. Johnston
David G. Johnston
david.g.johnston@gmail.com
In reply to: Chirag Karkera (#3)
Re: Provide read-only access to system catalog tables

On Tue, May 17, 2022 at 6:21 AM Chirag Karkera <chiragkrkr102@gmail.com>
wrote:

Thanks David for your reply!

But when i created a role i am not able to view objects under
information_schema.*

I mean I am not able to view the data, I can see only the column names.

Which goes to demonstrate you have permissions. But information_schema
uses the permissions of the executing user to decide what to show - it is
pre-filtered (and doesn't address PostgreSQL-only features). If you need
less restrictive behavior your best bet is to just use the system
catalogs. Those give you everything.

David J.

#5Chirag Karkera
Chirag Karkera
chiragkrkr102@gmail.com
In reply to: David G. Johnston (#4)
Re: Provide read-only access to system catalog tables

Thank you for the clarification.

Will use the system catalogs tables.

Thank You.

Regards,
Chirag Karkera

On Tue, May 17, 2022 at 6:59 PM David G. Johnston <
david.g.johnston@gmail.com> wrote:

Show quoted text

On Tue, May 17, 2022 at 6:21 AM Chirag Karkera <chiragkrkr102@gmail.com>
wrote:

Thanks David for your reply!

But when i created a role i am not able to view objects under
information_schema.*

I mean I am not able to view the data, I can see only the column names.

Which goes to demonstrate you have permissions. But information_schema
uses the permissions of the executing user to decide what to show - it is
pre-filtered (and doesn't address PostgreSQL-only features). If you need
less restrictive behavior your best bet is to just use the system
catalogs. Those give you everything.

David J.

← Back to Topics