PostgreSQL: Show all the privileges for a concrete user

postgresql postgresql-9.1 psql privileges
56,371

Solution 1

table permissions:

select 
 * 
from information_schema.role_table_grants 
where grantee='YOUR_USER'
;

ownership:

select 
   * 
from pg_tables 
where tableowner = 'YOUR_USER'
;

schema permissions:

select  
  r.usename as grantor, e.usename as grantee, nspname, privilege_type, is_grantable
from pg_namespace
join lateral (
  SELECT
    *
  from
    aclexplode(nspacl) as x
) a on true
join pg_user e on a.grantee = e.usesysid
join pg_user r on a.grantor = r.usesysid 
 where e.usename = 'YOUR_USER'
;

Solution 2

This command was helpful for me:

\l

Here's how I used it:

postgres=# \l

                        List of databases
 Name   | Owner    | Encoding | Collate | Ctype |          Access privileges          
------------------------------+-----------------+----------+---------+-------+-------------------------------------
 mydb1  | postgres | UTF8     | en_NG   | en_NG | =Tc/postgres                       +
        |          |          |         |       | postgres=CTc/postgres              +
        |          |          |         |       | myuser=CTc/postgres
 mydb2  | postgres | UTF8     | en_NG   | en_NG | =Tc/postgres                       +
        |          |          |         |       | postgres=CTc/postgres              +
        |          |          |         |       | my_user=CTc/postgres

Resources: PostgreSQL: List the database privileges using psql

That's all.

I hope this helps

Share:
56,371
Python241820
Author by

Python241820

Updated on March 10, 2021

Comments

  • Python241820
    Python241820 about 3 years

    How to make a query to the Postgres data dictionary to find out all the privileges that a particular user has.

    I've been looking for a solution and I can not find anything. Thanks and good day

  • Jeff
    Jeff over 4 years
    Great solution(s) but for schema permission, you don't need a join lateral. Simply ... FROM pg_namespace, aclexplode(nspacl) AS a ...
  • ygoe
    ygoe about 4 years
    Not sure what this does, but all query results are empty. Yet my user can access their own databases, tables and even peek into foreign databases and create/delete new tables there! This answer doesn't help.
  • a_horse_with_no_name
    a_horse_with_no_name over 3 years
    @ygoe: if a user owns a table (or database), no special grant exists as the owner of an object always has full access to that object (without grants)
  • Gergely M
    Gergely M over 2 years
    Note: JOIN LATERAL is available in Postgres from version 9.3 thus the schema permissions query above will not work in AWS Redshift.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

PostgreSQL user listing
List tables in a PostgreSQL schema
How to exit from PostgreSQL command line utility: psql
Owner of schema public changes depending on who I'm logged in as?
Is there a "pg_restore --quiet" option like "psql --quiet"?
create database in postgresql with bash command
Login to PostgreSQL using md5 encrypted password and not plaintext password
Transaction roll back not working in Postgresql
pg_restore WARNING: errors ignored on restore: 62
Postgres creating a local temp table (on commit drop) from a dynamic sql string