Investigate Postgres's new row level security

EarthSystemCoG / COG

COG source code

BSD 3-Clause "New" or "Revised" License

8 stars 16 forks source link

Investigate Postgres's new row level security #1212

Closed murphysj closed 8 years ago

murphysj commented 8 years ago

WHO: Ben Postgres now has a way to add extra security to just select rows in a table. Ben thought this might be a good way to protect our passwords.

http://www.postgresql.org/docs/devel/static/ddl-rowsecurity.html

Is this worth doing?

LucaCinquini commented 8 years ago

Password are already encrypted inside Postgres... And if anybody steals a password, the only thing they can do is impersonate a CoG user. I don't think this is really needed.

murphysj commented 8 years ago

sounds good. thanks for looking into it.