Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

PostgreSQL: View database connect permissions

Tags:

postgresql

How do you view users that have been issued GRANT CONNECT ON DATABASE <database> TO <user>?

  • \dp - lists table/view permissions
  • \dn+ - lists schema permissions
  • \l+ does not list all users that can access the database
like image 929
vol7ron Avatar asked Apr 19 '11 14:04

vol7ron

People also ask

How do I check database permissions in PostgreSQL?

Check PostgreSQL User Privileges Once you're connected to your database cluster, you can use the \du command to list users that currently exist and see their roles.

How do I see roles in PostgreSQL?

SELECT rolname FROM pg_roles; The psql program's \du meta-command is also useful for listing the existing roles. In order to bootstrap the database system, a freshly initialized system always contains one predefined role.

1 Answers

A bit odd if the \l+ command just displays some of the users that have permission/privilege to connect to the database. I could not repeat that myself on a PostgreSQL 8.4 installation (Ubuntu 10.04 LTS). What version are you using?

Anyway, perhaps you could check the table holding the ACL's for that particular database and from that deduce whether the user has the correct privileges or not:

SELECT datname as "Relation", datacl as "Access permissions" FROM pg_database WHERE datname = 'databasename';

If you just want to check one user you could do something like this:

SELECT * FROM has_database_privilege('username', 'database', 'connect');

How are the permissions/privileges to interpreted? The privileges are to be read like this:

user = privileges / granted by

Omitting user means that PUBLIC is granted the privilege, ie all roles. For example if the privilege is =Tc/postgres then all roles may connect and create temporary tables in that particular database and it is the postgres user who granted the privilege.

There is a synopsis at the PostgreSQL site explaining the different privileges: https://www.postgresql.org/docs/current/ddl-priv.html#PRIVILEGE-ABBREVS-TABLE.

rolename=xxxx -- privileges granted to a role         =xxxx -- privileges granted to PUBLIC              r -- SELECT ("read")             w -- UPDATE ("write")             a -- INSERT ("append")             d -- DELETE             D -- TRUNCATE             x -- REFERENCES             t -- TRIGGER             X -- EXECUTE             U -- USAGE             C -- CREATE             c -- CONNECT             T -- TEMPORARY       arwdDxt -- ALL PRIVILEGES (for tables, varies for other objects)             * -- grant option for preceding privilege          /yyyy -- role that granted this privilege
like image 62
John P Avatar answered Oct 26 '22 00:10

John P
Sign in to Comment

Related questions

approximate search in a database
Build complex rails SQL
Postgresql - Query running a lot faster with enable_nestloop=false. Why is the planner not doing the right thing?
Choosing the right partitioning rule
Postgres UTC date format & epoch cast, sign inversion
Converting Postgresql data to Open Street Maps
node.js + postgres database transaction management
Can't insert a record because of "malformed record literal"
pg_dump version mismatch in Rails
'service postgresql start' fails to start postgres service on Fedora
How to make a foreign key with a constraint on the referenced table in PostgreSQL
how do I set table ownership in rails with postgresql?
How to avoid race conditions when using the find_or_create method of DBIx::Class::ResultSet?
Add new column without table lock?
How to use pgFouine with PostgreSQL 9.1?
ERROR: subquery in FROM cannot refer to other relations of same query level
cursort.execute/cursor.callproc returns no error but nothing is executed
How can I insert the return of DELETE into INSERT in postgresql?
Postgresql object ID and tuples
How do I do database transactions with psycopg2/python db api?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!