File tree Expand file tree Collapse file tree 2 files changed +8
-8
lines changed
services/postgres/scripts Expand file tree Collapse file tree 2 files changed +8
-8
lines changed Original file line number Diff line number Diff line change @@ -153,7 +153,7 @@ POSTGRES_PORT=5432
153153POSTGRES_USER=scu
154154
155155POSTGRES_READONLY_PASSWORD=readonly
156- POSTGRES_READONLY_USER=readonly
156+ POSTGRES_READONLY_USER=postgres_readonly
157157
158158
159159RABBIT_HOST=rabbit
Original file line number Diff line number Diff line change 1- -- Revoke all privileges granted to the user on the public schema
1+ -- Revoke all privileges the user has on the public schema
2+ REVOKE ALL PRIVILEGES ON SCHEMA public FROM ${POSTGRES_READONLY_USER};
3+
4+ -- Revoke all privileges the user has on tables and sequences in the public schema
25REVOKE ALL PRIVILEGES ON ALL TABLES IN SCHEMA public FROM ${POSTGRES_READONLY_USER};
36REVOKE ALL PRIVILEGES ON ALL SEQUENCES IN SCHEMA public FROM ${POSTGRES_READONLY_USER};
47
5- -- Revoke future privileges that were set using ALTER DEFAULT PRIVILEGES
6- ALTER DEFAULT PRIVILEGES IN SCHEMA public REVOKE SELECT ON TABLES FROM ${POSTGRES_READONLY_USER};
7- ALTER DEFAULT PRIVILEGES IN SCHEMA public REVOKE SELECT ON SEQUENCES FROM ${POSTGRES_READONLY_USER};
8-
9- -- Revoke CONNECT privilege on the database
10- REVOKE CONNECT ON DATABASE ${POSTGRES_DB} FROM ${POSTGRES_READONLY_USER};
8+ -- Revoke any future privileges set via ALTER DEFAULT PRIVILEGES
9+ ALTER DEFAULT PRIVILEGES IN SCHEMA public REVOKE ALL ON TABLES FROM ${POSTGRES_READONLY_USER};
10+ ALTER DEFAULT PRIVILEGES IN SCHEMA public REVOKE ALL ON SEQUENCES FROM ${POSTGRES_READONLY_USER};
1111
1212-- Drop the user
1313DROP USER ${POSTGRES_READONLY_USER};
You can’t perform that action at this time.
0 commit comments