PostgreSQL: How to GRANT permission to GRANT permission in specific SCHEMA

Question

I have a sample database containing two schemas and I have two roles in the database.

I need to grant rights in a way that

(essentially "schema-specific admins")

Would someone know a possible approach to this?

https://dba.stackexchange.com/questions/117109/how-to-manage-default-privileges-for-users-on-a-database-vs-schema/117661#117661 — PersianMan, Nov 08 '21 at 15:54

score 1 · Answer 1 · answered Nov 08 '21 at 09:21

1

I can think of two ways:

the “administrator role” for each schema owns the objects in that schema – then the requirement is automatically fulfilled
all objects are owned by the same role, and that role uses GRANT ... WITH GRANT OPTION on all tables in each schema to the respective administrative role

I'd prefer the first option, because it is simpler.

answered Nov 08 '21 at 09:21

Laurenz Albe

Makes sense. But how do you specify the "administrator role" on a schema level? – pink_demon Nov 08 '21 at 09:26
1

Make that role the owner of the respective schema. Unless you grant extra permissions on that schema, only the owner can create tables in it. – Laurenz Albe Nov 08 '21 at 09:27

1 Answers1