fadedbee
Reputation: 44807
How to use data (rather than an identifier) to grant postgres permissions
I want to use the following function (as a trigger on a table's inserts):
CREATE OR REPLACE FUNCTION insert_authid_fn() RETURNS trigger AS $$
BEGIN
GRANT ALL ON DATABASE testdb TO NEW.username;
RETURN NEW;
END;
$$ LANGUAGE plpgsql;
I get the error:
ERROR: syntax error at or near "."
LINE 3: GRANT ALL ON DATABASE testdb TO NEW.username;
because New.username is value, rather than an identifier.
How can I achieve this GRANT?
Upvotes: 0
Views: 16
Answers (1)
Vao Tsun
Reputation: 51609
syntactically:
CREATE OR REPLACE FUNCTION insert_authid_fn() RETURNS trigger AS $$
BEGIN
execute format ('GRANT ALL ON DATABASE testdb TO %I',NEW.username);
RETURN NEW;
END;
$$ LANGUAGE plpgsql;
But I doubt it is a good idea in general
Upvotes: 1
Related Questions
- how to grant update or select on some specified row in postgresql table?
- Query grants for a table in postgres
- GRANT statements with bound parameters
- PostgreSQL grant access to table
- Postgres: GRANT to user based on sub-query
- PostgreSQL grant select righs on function with no SELECT access to table
- granting database access privileges in postgres
- PostgreSQL and GRANT statement
- Grant access to subset of table to user on PostgreSQL
- postgresql 9.1 - access tables through functions