2022-12-21 postgres

Create a Postgres User and Grant Access to a Database

Create a Postgres User and Grant Access to a Database

Login:

sudo su postgres
psql

Create a database:

CREATE DATABASE <db_name>;

Create a user:

# create user <username> with encrypted password '<password>';
CREATE USER <username> WITH PASSWORD '<password>';

Add a user to a role:

GRANT read_only_role TO <username>;

Grant the user access on a database (includes create on schema - not table):

grant all privileges on database <db_name> to <username>;

Grant a role read access to all dbs on a schema:

GRANT SELECT ON ALL TABLES IN SCHEMA public TO read_only_role;
GRANT EXECUTE ON ALL FUNCTIONS IN SCHEMA public TO read_only_role;

Grant the user access on the public schema:

May get: permission denied for schema public

psql
\c <db_name>
GRANT ALL ON SCHEMA public TO <username>;
GRANT ALL PRIVILEGES ON ALL TABLES IN SCHEMA public to 
<username>;
GRANT ALL PRIVILEGES ON ALL SEQUENCES IN SCHEMA public TO <username>;

You may get an error FATAL: Peer authentication failed for user "pali_canon" when attempting to login with psql -U <username> -W

This is due to Postgres host based authentication (hba).

Get the file locations with:

SHOW config_file;
SHOW hba_file;

You can view the rules for auth.

Typically this would result from authenticaiton where the host is not specified. If you set the host it would work:

psql -U <username> -W -h 127.0.0.1

Delete the user

REVOKE ALL PRIVILEGES ON database <db_name> from <username>;
DROP user <username>;

Sources:

• gist: read-access.sql
• ubiq.co: How to create a user in postgres
• postgres: config file locations
• Postgres: Why is a new user allowed to create a table?
• Serverfault: Grant select to all tables in postgresql