/ - Diff - BIEN 3 - NCEAS Projects

« Previous | Next »

Revision 6822

Added by Aaron Marcuse-Kubitza almost 12 years ago

Makefile mk_db, schemas/pg_hba*.conf: Added passwordless public_ user with access to just the database schema. Note that in PostgreSQL, only users with explicit GRANT permissions on a table can read data in that table, but all DB users with a login can view all table schemas.

     #host    replication     postgres        127.0.0.1/32            trust
     #host    replication     postgres        ::1/128                 trust
     local   template1,vegbien  public_           trust
     host    template1,vegbien  public_ 0.0.0.0/0 trust
     host    template1,vegbien  public_ ::/0      trust
     local   template1,vegbien  +bien            ident
     local   template1,vegbien  +bien            md5
     host    template1,vegbien  +bien  0.0.0.0/0 md5

     #host    all         all         0.0.0.0/0             md5
     local   template1,vegbien  public_           trust
     host    template1,vegbien  public_ 0.0.0.0/0 trust
     host    template1,vegbien  public_ ::/0      trust
     local   template1,vegbien  +bien            ident
     local   template1,vegbien  +bien            md5
     host    template1,vegbien  +bien  0.0.0.0/0 md5

     db: mk_db rm_initial_public _always ;
     mk_db: _always
     	-echo "CREATE USER public_;"|$(psqlAsAdmin)
     	-echo "CREATE USER bien PASSWORD '$(bienPassword)';"|$(psqlAsAdmin)
     	-echo "CREATE USER bien_read PASSWORD '$(bienReadPassword)' IN ROLE bien \
     NOINHERIT;"|$(psqlAsAdmin)
-...
     	echo "DROP DATABASE IF EXISTS vegbien;"|$(psqlAsAdmin)
     	echo "DROP USER IF EXISTS bien_read;"|$(psqlAsAdmin)
     	echo "DROP USER IF EXISTS bien;"|$(psqlAsAdmin)
     	echo "DROP USER IF EXISTS public_;"|$(psqlAsAdmin)
     reinstall_db: _always rm_db db ;

Also available in: Unified diff

Project

General

Profile

Revision 6822

Added by Aaron Marcuse-Kubitza almost 12 years ago