Sling Academy
Home/PostgreSQL/PostgreSQL: How to Grant/Revoke Permissions to a User

PostgreSQL: How to Grant/Revoke Permissions to a User

Last updated: January 04, 2024

Table of Contents

  1. Introduction
  2. Understanding User Roles
  3. Granting Basic Permissions
  4. Granting All Privileges on a Table
  5. Granting Permissions on All Tables in a Schema
  6. Using the WITH GRANT OPTION
  7. Revoking Permissions
  8. Revoking All Privileges
  9. Managing Schemas Permissions
  10. Advanced Permission Settings
  11. Conclusion

Introduction

Managing permissions is a crucial aspect of database administration. In PostgreSQL, the GRANT and REVOKE commands are used to control access to database objects. This tutorial will walk you through the process of granting and revoking permissions with practical examples.

Understanding User Roles

In PostgreSQL, permissions are assigned to roles. A role can be a user or a group, and can own database objects and have database privileges. Before you can grant or revoke permissions, you must understand the roles present in your system.

\du

The above command, when executed in the psql client, will display a list of current roles and their attributes.

Granting Basic Permissions

To grant permissions to a user, you use the GRANT command. For example, to give a user the ability to SELECT from a table:

GRANT SELECT ON table_name TO user_name;

This command gives user_name the permission to perform SELECT queries on table_name.

Granting All Privileges on a Table

You can give a user all permissions on a table using the following command:

GRANT ALL PRIVILEGES ON table_name TO user_name;

This allows for a full control over the given table to the user_name.

Granting Permissions on All Tables in a Schema

To apply permissions to all tables within a schema, you can use:

GRANT SELECT ON ALL TABLES IN SCHEMA public TO user_name;

Replace ‘public’ with your schema name and ‘user_name’ with the appropriate user role.

Using the WITH GRANT OPTION

The WITH GRANT OPTION allows a user to grant permissions to other roles:

GRANT SELECT ON table_name TO user_name WITH GRANT OPTION;

This means user_name can now permit others to use SELECT on table_name.

Revoking Permissions

To take back permissions, use the REVOKE command:

REVOKE SELECT ON table_name FROM user_name;

This revokes the SELECT permission from user_name on table_name.

Revoking All Privileges

To revoke all privileges from a role, the following syntax is used:

REVOKE ALL PRIVILEGES ON table_name FROM user_name;

This will remove every right from user_name on table_name.

Managing Schemas Permissions

You might also need to grant or revoke access to a schema. To grant usage on a schema:

GRANT USAGE ON SCHEMA schema_name TO user_name;

Revoke it similarly:

REVOKE USAGE ON SCHEMA schema_name FROM user_name;

Assigning permissions for creating objects in a schema:

GRANT CREATE ON SCHEMA schema_name TO user_name;

Advanced Permission Settings

When managing databases with multiple users and groups, you may need to set more specific permissions:

To give a role permission to alter and drop a specific table:

GRANT ALTER, DROP ON table_name TO user_name;

To cascade revoking privileges when the role that has given those privileges is removed:

REVOKE SELECT ON table_name FROM user_name CASCADE;

However, use CASCADE with caution as it can revoke privileges from multiple roles if they were granted those privileges by user_name.

Conclusion

In this tutorial, we explored how to handle permissions in PostgreSQL using the GRANT and REVOKE statements. Understanding and properly administering these permissions is vital for database security and functionality. Always test permission changes in a non-production environment before implementing in production to avoid unexpected access issues.

Next Article: 3 Ways to Auto-Backup a PostgreSQL Database on Ubuntu

Previous Article: How to Change User Password in PostgreSQL

Series: PostgreSQL Tutorials: From Basic to Advanced

PostgreSQL

You May Also Like

  • PostgreSQL with TimescaleDB: Querying Time-Series Data with SQL
  • PostgreSQL Full-Text Search with Boolean Operators
  • Filtering Stop Words in PostgreSQL Full-Text Search
  • PostgreSQL command-line cheat sheet
  • How to Perform Efficient Rolling Aggregations with TimescaleDB
  • PostgreSQL with TimescaleDB: Migrating from Traditional Relational Models
  • Best Practices for Maintaining PostgreSQL and TimescaleDB Databases
  • PostgreSQL with TimescaleDB: Building a High-Performance Analytics Engine
  • Integrating PostgreSQL and TimescaleDB with Machine Learning Models
  • PostgreSQL with TimescaleDB: Implementing Temporal Data Analysis
  • Combining PostgreSQL, TimescaleDB, and Airflow for Data Workflows
  • PostgreSQL with TimescaleDB: Visualizing Real-Time Data with Superset
  • Using PostgreSQL with TimescaleDB for Energy Consumption Analysis
  • PostgreSQL with TimescaleDB: How to Query Massive Datasets Efficiently
  • Best Practices for Writing Time-Series Queries in PostgreSQL with TimescaleDB
  • PostgreSQL with TimescaleDB: Implementing Batch Data Processing
  • Using PostgreSQL with TimescaleDB for Network Traffic Analysis
  • PostgreSQL with TimescaleDB: Troubleshooting Common Performance Issues
  • Building an IoT Data Pipeline with PostgreSQL and TimescaleDB