Drop Down MenusCSS Drop Down MenuPure CSS Dropdown Menu

PostgreSQL: Script to Create a Read-Only Database User

-
Many users has asked me how they can create READ-ONLY user, READ-ONLY Database or How they can create backup user which can be use only for backup (no modification)
Well answer is in parameter called default_transaction_read_only.
If you want to make a user READ-ONLY, then you can follow steps given below:
1. CREATE normal user.
2. Use ALTER USER command to set this parameter for this user as given below:
ALTER USER  set default_transaction_read_only = on;
3. GRANT SELECT to this user for tables/object using GRANT. And you are good to go.
Below is snapshot:
postgres=# create user readonly password 'test';
CREATE ROLE
postgres=# alter user readonly set default_transaction_read_only = on;
ALTER ROLE
postgres=# GRANT select on employees to readonly;
GRANT
edbs-MacBook-Pro:data postgres$ psql -U readonly -W
Password for user readonly:
psql (9.1.1)
Type "help" for help.

postgres=> select * from employees ;
 employee_name | entity_name
---------------+-------------
 Smith         | HR
 Jones         | HR
 Taylor        | SALES
 Brown         | SALES
(4 rows)

postgres=> CREATE table test_readonly(id numeric);
ERROR:  cannot execute CREATE TABLE in a read-only transaction
postgres=>



Similarly, If you want to make a Database READ-ONLY, then you can use following command


ALTER DATABASE  set default_transaction_read_only=on;
Below is snapshot:

postgres=# CREATE database readonly;
CREATE DATABASE
postgres=# alter database readonly set default_transaction_read_only = on;
ALTER DATABASE
postgres=# \q
edbs-MacBook-Pro:data postgres$ psql readonly
psql (9.1.1)
Type "help" for help.

readonly=# create table test_readonly(id numeric);
ERROR:  cannot execute CREATE TABLE in a read-only transaction
readonly=#





Now, if you want a seperate backup user which you want to use for Online/Hot Backup,Logical Backup (using pg_dump), then you can create a super user with default_transaction_read_only = on and can use it for backup purpose. As given below:


CREATE USER backupuser SUPERUSER  password 'backupuser';
ALTER USER backupuser set default_transaction_read_only = on;




Using default_transaction_read_only parameter, user can also make a Session Readonly by executing following command:


set default_transaction_read_only=on;



I hope above would help someone who is interested in having READ-ONLY user,database or backupuser.





















































Comments











Post a Comment






























Popular posts from this blog









PostgreSQL Index






-














Image







  Indexes are special lookup tables that the database search engine can use to speed up data retrieval. Simply put, an index is a pointer to data in a table. An index in a database is very similar to an index in the back of a book.  For example, if you want to reference all pages in a book that discusses a certain topic, you have to first refer to the index, which lists all topics alphabetically and then refer to one or more specific page numbers.  An index helps to speed up SELECT queries and WHERE clauses; however, it slows down data input, with UPDATE and INSERT statements. Indexes can be created or dropped with no effect on the data.  Creating an index involves the CREATE INDEX statement, which allows you to name the index, to specify the table and which column or columns to index, and to indicate whether the index is in ascending or descending order.  Indexes can also be unique, similar to the UNIQUE constraint, in that the index prevents duplicate entries in the column or combina...








Read more










VMWARE WORKSTATION 3,4,5,6,7,8,9,10,11,12,14,15...etc  LICENSE KEYS COLLECTION






-














Image







  Below tutorialdba.com collected and sorted out hundreds of universal License Keys for all major versions of VMware Workstation Pro (not for VMware Workstation Player) 4.x, 5.x, 6.x, 7.x, 8.x, 9.x, 10.x, 11.x, 12.x and v14.x on Windows and Linux platforms (support both 32-bit and 64-bit operating system) in this single post. Besides, we also provide some license keys for VMware other projects. Just enjoy and share them.     // 4~14 Universal License Keys //   Version License Keys  VMware Workstation  VMware Workstation 4.x.x  ZHDH1-UR90N-W844G-4PTN6  G1NP0-T88AL-M016F-4P8N2  ZC14J-4U16A-0A04G-4MEZP  J1WF8-58LDE-881DG-4M8Q3    VMware Workstation 5.x.x  LUXRM-WP0DN-A256U-4M9Q3  DJXDR-NDT27-Y2NDU-4YTZK  DA925-HP80U-Z8HDC-4WXXP  3KW2W-AYR2C-88M6F-4MDQ2    VMware Workstation 6.x.x  A0E8R-YUDFV-6AK2F-4GAN2  CRX0D-VWL0V-7CJ6C-46C7A  NA8RX-QPNDU-D2LA9-4WAZL  1H4WM-N21FZ-7GK2A-44U5U  6AJ6N-THY2P-42KEF-4WTFG  FK8R9-LPCDT-88H4Y-4WRN3  KAR8R-T8MAL-K8J6A-4WDXQ  YJEKW-JMFF4-YA1DC-4WTQ...








Read more










How to CreateYour Own AWS Account Alias?






-














Image







 Account alias is the URL for your sign-in page and contains the account ID by default. We can customize this URL with the company name and even overwrite the previous one.   How to CreateYour  Own AWS Account Alias?  Step 1  − Sign in to the AWS management console and open the IAM console using the following link  https://console.aws.amazon.com/iam/  ​  Step 2  − Select the customize link and create an alias of choice.  ​  Step 3. After created alias Account Id changed as alias name from  074209010282  to tutorialdba  ​  Step 4. If you delete the alias, click the customize link, then click the Yes, Delete button. This deletes the alias and it reverts to the Account ID.  ​   








Read more










How to Get Table Size, Database Size, Indexes Size, schema Size, Tablespace Size, column Size in PostgreSQL Database 






-















 In this post, I am sharing few important function for finding the size of database, table and index in PostgreSQL. Finding object size in postgresql database is very important and common. Is it very useful to know the exact size occupied by the object at the tablespace. The object size in the following scripts is in GB. The scripts have been formatted to work very easily with PUTTY SQL Editor. 1. Checking table size excluding table dependency: SELECT pg_size_pretty(pg_relation_size('mhrordhu_shk.mut_kharedi_audit'));  pg_size_pretty ----------------  238 MB (1 row)  2. Checking table size including table dependency: SELECT pg_size_pretty(pg_total_relation_size('mhrordhu_shk.mut_kharedi_audit'));  pg_size_pretty ----------------  268 MB (1 row)  3. Finding individual postgresql database size SELECT pg_size_pretty(pg_database_size('db_name'));  4. Finding individual table size for postgresql database -including dependency index: SELECT pg_size_pretty(pg_total_rel...








Read more










PostgreSQL ALTER TABLE ... SET LOGGED / UNLOGGED






-















  PostgreSQL allows one to create tables which aren't written to the Write Ahead Log, meaning they aren't replicated or crash-safe, but also don't have the associated overhead, so are good for data that doesn't need the guarantees of regular tables. But if you decided an unlogged table should now be replicated, or a regular table should no longer be logged, you'd previously have to create a new copy of the table and copy the data across. But in 9.5, you can switch between logged and unlogged using a new command:   Set an unlogged table to logged:   ALTER TABLE <tablename> SET LOGGED;   Set a logged table to unlogged:   ALTER TABLE <tablename> SET UNLOGGED;   For example:   # CREATE UNLOGGED TABLE messages (id int PRIMARY KEY, message text);    # SELECT relname,     CASE relpersistence       WHEN 'u' THEN 'unlogged'       WHEN 'p' then 'logged'       ELSE 'unknown' END AS table_type     FROM pg_class     WHERE relna...








Read more