I created a materialized view to manage editings via a real postgres view. The view has some rules to deliver all inserts, updates and deletes to the underlaying table with the appropriate privileges, insert, update and delete, for members of an editing role. To avoid editings on the underlaying table I want to deny any access except select access to the table for all users. Does anyone outside has an idea how to manage the described situation?
I'll appreciate any hint.
Regards
Horst
-
Hi,
I'd use the security definer/invoker mechanism (http://www.postgresql.org/docs/9.0/interactive/sql-createfunction.html). This way you could create special user who is the owner of the rule functions, and can read/write to the table, and normal user, who cannot read/write to the table, but can run those functions.