[GENERAL] Question about schema-level permissions
I've created a schema called Indexer and a user called Indexer. I then grant Indexer ALL on said schema: GRANT ALL ON SCHEMA Indexer TO Indexer; Next, I attempt to INSERT into Indexer.ParseErrors, I get a permission denied error message. However, if I specifically grant Indexer INSERT permissions: GRANT INSERT ON Indexer.ParseErrors TO Indexer; Then everything works. Am I missing something? Doesn't GRANT ALL mean that user can do anything they want with objects in that schema, including inserts? Thanks! Mike -- Sent via pgsql-general mailing list (pgsql-general@postgresql.org) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-general
Re: [GENERAL] Question about schema-level permissions
On May 10, 2012, at 9:16 PM, Mike Christensen wrote: Am I missing something? Doesn't GRANT ALL mean that user can do anything they want with objects in that schema, including inserts? No, it means that user has all privileges on *schema itself*; the objects inside of it have their own permissions. What you are looking for is: GRANT ALL ON ALL TABLES IN SCHEMA Indexer TO Indexer; -- -- Christophe Pettus x...@thebuild.com -- Sent via pgsql-general mailing list (pgsql-general@postgresql.org) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-general
Re: [GENERAL] Question about schema-level permissions
Excellent, thanks so much! Mike On Thu, May 10, 2012 at 9:38 PM, Christophe Pettus x...@thebuild.com wrote: On May 10, 2012, at 9:16 PM, Mike Christensen wrote: Am I missing something? Doesn't GRANT ALL mean that user can do anything they want with objects in that schema, including inserts? No, it means that user has all privileges on *schema itself*; the objects inside of it have their own permissions. What you are looking for is: GRANT ALL ON ALL TABLES IN SCHEMA Indexer TO Indexer; -- -- Christophe Pettus x...@thebuild.com -- Sent via pgsql-general mailing list (pgsql-general@postgresql.org) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-general
