> To be able to select from a table you need > \* CONNECT > \* USAGE > \* SELECT... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

echion 41 days ago | parent | context | favorite | on: Common DB schema change mistakes in Postgres

> To be able to select from a table you need

> * CONNECT

> * USAGE

> * SELECT

Isn't LOGIN (https://www.postgresql.org/docs/16/role-attributes.html) also needed?

  Only roles that have the LOGIN attribute can be used as the initial role name for a database connection

briffle 41 days ago | [–]

You can log in and then change your role (if you permissions) with SET ROLE NEW_USER;

We managed to kludge our way to defaulting to read only, then using set role to do writes if you need to.

WinDoctor 41 days ago | [–]

Good point. Connecting to the Cluster is indeed actually a 4th layer.

There you do need user with LOGIN, valid password & SSL.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact