Defining PostgreSQL Roles
The following properties are applicable to a PostgreSQL Role object.
|
Tab |
Section |
Property |
Description |
Additional Properties |
|---|---|---|---|---|
|
|
|
Name |
Specifies the database role name |
|
|
|
|
Type |
Specifies the types of role |
Role, User, Group: Specifies a database role type |
|
|
|
Generate |
Specifies whether a SQL statement for the collation is generated during forward engineering |
|
|
General
|
General Options
|
Superuser |
Specifies whether the role is a superuser. A Superuser can override all access restrictions within the database. |
TRUE: Indicates whether the role is superuser FALSE: Indicates whether the role is non-superuser |
|
Can Create DB |
Specifies the role's ability to create databases. Specifying CREATEDB allows a role to create new databases. |
TRUE: Indicates that the role is allowed to create a database FALSE: Indicates that the role is not allowed to create a database |
||
|
Can Create Roles |
Specifies whether a role can create, alter, drop, comment on, and change the security label for other roles |
TRUE: Indicates whether the role is created FALSE: Indicates whether the role is not created |
||
|
Inherits rights from parent roles |
Specifies whether a role "inherits" the privileges of roles it is a member of |
TRUE: Indicates to automatically inherits the privileges of any roles it is a member of. FALSE: Indicates that the privileges of any roles are not automatically inderited. |
||
|
Can login |
Specifies whether a role is allowed to log in and can be used as the initial session authorization name during client connection |
TRUE: Indicates that the role is allowed to log in FALSE: Indicates that the role is not allowed to log in |
||
|
Can inititate replication |
Specifies whether a role can initiate streaming replication or put the system in and out of backup mode. Use the REPLICATION attribute only on roles intended for replication. |
TRUE: Indicates that the role is allowed to initiate replication FALSE: Indicates that the role is not allowed to initiate the replication |
||
|
Bypass Row-Level Security |
Specifies whether a role can bypass every row-level security (RLS) policy. The default is NOBYPASSRLS. Only superuser roles or roles with BYPASSRLS permission can specify BYPASSRL. |
TRUE: Specifies whether a role bypasses every row-level security (RLS) policy Only superuser roles or roles with BYPASSRLS can specify BYPASSRLS. FALSE: Specifies whether a role not bypasses every row-level security (RLS) policy |
||
|
Connection Limit |
Specifies how many concurrent connections the role can make. -1 (the default) indicates that there is no limit. |
|
||
|
Valid Until |
Sets a date and time after which the role's password is no longer valid. If you omit this clause, the password remains valid for all time. |
|
||
|
SysID |
Specifies that the SYSID clause ignores but accepts backward compatibility |
|
||
|
Member Of |
|
|
Automatically add the new role as a member of the specified existing roles |
Name: Specifies the database role name With Admin Option: Specifies whether the selected role has administrative privileges |
|
Members |
|
|
Automatically adds one or more specified existing roles as members to enable the SET option |
Name: Specifies the database role name With Admin Option: Specifies whether the selected role has administrative privileges |
- (Optional) Click the Comment tab and enter any comments you want to associate with the object.
- (Optional) Click the UDP tab to work with user-defined properties for the object.
- (Optional) Click the Notes tab to view and edit user notes.
- (Optional) Click the Extended Notes tab to view or edit user notes.
- Click Close.
The role is defined, and the PostgreSQL Role Editor closes.
For more information, refer to PostgreSQL documentation.
|
Copyright © 2024 Quest Software, Inc. |