Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

pg_largeobject access on heroku

Tags:

database

postgresql

heroku

I'm trying to clean up my postgres database on heroku where some large objects have gotten out of control and I want to remove large objects which aren't used anymore.

On my dev machine, I can do:

select distinct loid from pg_largeobject 
Where loid Not In (select id from table )

then i run:

SELECT lo_unlink(loid)

on each of those IDs.

But on heroku, i can't run any selects on pg_largeobject, as even 

select * from pg_largeobject limit 1;

gives me an error:

ERROR:  permission denied for relation pg_largeobject

Any suggestions how to work around this, or actually even why we don't have read access on pg_largeobject in heroku?

like image 391
bvanklinken Avatar asked Feb 22 '13 00:02

bvanklinken

1 Answers

Since PostgreSQL 9.0, a non-superuser can't access pg_largeobject. This is documented in the release notes:

Add the ability to control large object (BLOB) permissions with GRANT/REVOKE (KaiGai Kohei)

Formerly, any database user could read or modify any large object. Read and write permissions can now be granted and revoked per large object, and the ownership of large objects is tracked.

If it works on your development instance, it's either because it's version 8.4 or lower, or because you're logged in as a superuser.

If you can't log in as a superuser on heroku, I guess you could dump the remote database with pg_dump, then reload it locally, identify the leaked OIDs as a local superuser, put them in a script with the lo_unlink commands, and finally play this script against the heroku instance.

Update:

Based on how the psql \dl command queries the database, it appears that pg_catalog.pg_largeobject_metadata can be used to retrieve the OIDs and ownership of all large objects, through this query:

SELECT oid as "ID",
  pg_catalog.pg_get_userbyid(lomowner) as "Owner",
  pg_catalog.obj_description(oid, 'pg_largeobject') as "Description"
  FROM pg_catalog.pg_largeobject_metadata   ORDER BY oid

So your initial query finding the leaked large objects could be changed for non-superusers with 9.0+ into:

select oid from pg_largeobject_metadata
 Where oid Not In (select id from table )

and if necessary, a condition on lomowner could be added to filter on the large objects owned by a specific user.

like image 169
Daniel Vérité Avatar answered Nov 10 '22 10:11

Daniel Vérité
Sign in to Comment

Related questions

How to create ID column in R
Integrated Database for my JavaSE Application
Error converting datatype nvarchar to int
SQL Creating an Alias Column For a Nested Select?
How does one insert records simultaneously into two database tables?
Should primary keys always be added to an innodb table?
Run custom database scripts in Jenkins
Having trouble with MySQL query
android dictionary application with offline database
Why does PHP PDO get "SQLSTATE[42000] [1044] Access denied for user" when mysql command line works?
Query to list all partitions in Datomic
SQL Server : max date and inner join
SQLite - Fastest way to read Data from SQLite Database?
Disadvantages of setting the whole DB charset to Unicode vs some NVARCHAR2 in Oracle DB?
Update nested sets when changing parent or deleting
Best practice for storing GPS data of a tracking app in mysql database
How do I execute a Javascript function requires a value after an onload function is completed that gives the value?
SQL: Get at least the Third Largest Value from a set of columns of a row
Where is the database connection information in an ADP file? [closed]
MongoDB index not helping query with multikey index

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!