- Users other than the creator do not have any access privileges
- to an object unless the creator grants permissions.
+ Users other than the creator of an object do not have any access privileges
+ to the object unless the creator grants permissions.
There is no need to grant privileges to the creator of an object,
- as the creator automatically holds all privileges, and can also
- drop the object. (The creator could, however, choose to revoke
+ as the creator automatically holds all privileges.
+ (The creator could, however, choose to revoke
some of his own privileges for safety. Note that the ability to
grant and revoke privileges is inherent in the creator and cannot
- be lost.)
+ be lost. The right to drop the object is likewise inherent in the
+ creator, and cannot be granted or revoked.)
DELETE
- Allows the of a row from the
+ Allows of a row from the
specified table.
Allows the creation of a rule on the table/view. (See
- linkend="sql-createrule" endterm="sql-createrule-title"> statement).
+ linkend="sql-createrule" endterm="sql-createrule-title"> statement.)
To create a table with a foreign key constraint, it is
- necessary to have this privilege on the table with the primary
+ necessary to have this privilege on the table with the referenced
key.
Allows the creation of a trigger on the specified table. (See
- statement).
+ statement.)
Grant all of the above privileges at once. The
- PRIVILEGES key word is optional, but it is
+ PRIVILEGES key word is optional in
+
PostgreSQL, though it is
required by strict SQL.
Notes
+ It should be noted that database superusers can access
+ all objects regardless of object privilege settings. This
+ is comparable to the rights of root in a Unix system.
+ As with root, it's unwise to operate as a superuser
+ except when absolutely necessary.
+
+
Currently, to grant privileges in
PostgreSQL to only a few columns, you must
projects / postgresql.git / commitdiff