May 2018
Intermediate to advanced
576 pages
30h 25m
English
First, we grant somerole the privilege to view the contents of the table, as we did in the previous recipe:
GRANT SELECT ON someschema.sometable3 TO somerole;
Let us assume that the contents of the table are as shown by the following command:
SELECT * FROM someschema.sometable3; col1 | col2 ------+----------- 1 | One -1 | Minus one(2 rows)
In order to grant the ability to access some rows only, we create a policy specifying what is allowed and on which rows. For instance, this way we can enforce the condition that somerole is only allowed to select rows with positive values of col1:
CREATE POLICY example1 ON someschema.sometable3FOR SELECTTO someroleUSING (col1 > 0);
The effect of this command is that the rows that do not satisfy ...