search

linz / bde-fdw-rds

Python AWS cdk to create rds with fdw for BDE analytica queries
MIT License
0 stars 0 forks source link

Functionality to add users #19

Open billgeo opened 1 year ago

billgeo commented 1 year ago

So that we can add users easily, we want to create new users with repeatable process/code.

Acceptance Criteria

  1. Ideally, we don't want to have to redeploy the system to manage users
  2. Users should use the most secure authentication available. e.g. IAM for the linz-ds-heritage account
  3. Users should have their own schema (i.e. bmnelson@linz.govt.nz would have a schema called bmnelson), that only they can write to.
  4. All users should be able to access the FDW server and remote tables (@Jimlinz - just added this criteria because I think you might need to do a server mapping for each user and you can't use role inheritance).

Question:

  1. Not sure how the user will be able to connect to the dagtabase with IAM in their postgres client. e.g. QGIS, PGAdmin, psql
billgeo commented 1 year ago

@Jimlinz please track PRs etc here.

Jimlinz commented 1 year ago

Draft PR here: https://github.com/linz/bde-fdw-rds/pull/51 This is still work in progress. Further changes needed, but good to have it in version control to gather preliminary feedback.