jeffjohnson9046 · September 21, 2021 14:17 · Apr 3, 2021 · Apr 3, 2021 · Apr 3, 2021 · Apr 3, 2021
diff --git a/create-postgres-db-and-schema.sql b/create-postgres-db-and-schema.sql
@@ -1,6 +1,7 @@
 CREATE USER [database owner name] WITH CREATEROLE ENCRYTPED PASSWORD '[database owner's password]';
 CREATE DATABASE [database name] OWNER [database owner name];
 
+-- connect to [database name]
 REVOKE CREATE ON SCHEMA public FROM PUBLIC;
 REVOKE ALL ON DATABASE [database name] FROM PUBLIC;
 REVOKE ALL ON ALL TABLES IN SCHEMA public FROM PUBLIC;

diff --git a/create-postgres-db-and-schema.sql b/create-postgres-db-and-schema.sql
@@ -15,7 +15,7 @@ GRANT USAGE ON SCHEMA [schema name] TO [read/write application group name];
 GRANT SELECT, INSERT, UPDATE, DELETE ON ALL TABLES IN SCHEMA [schema name] TO [read/write application group name];
 GRANT USAGE ON ALL SEQUENCES IN SCHEMA [schema name] TO [read/write application group name];
 ALTER DEFAULT PRIVILEGES IN SCHEMA [schema name] GRANT SELECT, INSERT, UPDATE, DELETE ON TABLES TO [read/write application group name];
-ALTER DEFAULT PRIVILEGES IN SCHEMA [schema] GRANT USAGE ON SEQUENCES TO [read/write application group name];
+ALTER DEFAULT PRIVILEGES IN SCHEMA [schema name] GRANT USAGE ON SEQUENCES TO [read/write application group name];
 
 CREATE USER [read/write application user] WITH ENCRYPTED PASSWORD '[read/write application user password]' IN ROLE [read/write application group name];
 ALTER USER [read/write application user] SET SEARCH_PATH TO [schema name];
diff --git a/create-postgres-db-and-schema.sql b/create-postgres-db-and-schema.sql
@@ -1,4 +1,4 @@
-CREATE USER [database owner name] CREATEROLE WITH PASSWORD '[database owner's password]';
+CREATE USER [database owner name] WITH CREATEROLE ENCRYTPED PASSWORD '[database owner's password]';
 CREATE DATABASE [database name] OWNER [database owner name];
 
 REVOKE CREATE ON SCHEMA public FROM PUBLIC;
@@ -7,6 +7,7 @@ REVOKE ALL ON ALL TABLES IN SCHEMA public FROM PUBLIC;
 
 -- log in as [database owner name] to [database name] db
 CREATE SCHEMA [schema name];
+ALTER USER [database owner name] SET SEARCH_PATH TO [schema name];
 
 CREATE ROLE [read/write application group name] NOINHERIT;
 GRANT CONNECT ON DATABASE [database name] TO [read/write application group name];
@@ -16,5 +17,5 @@ GRANT USAGE ON ALL SEQUENCES IN SCHEMA [schema name] TO [read/write application
 ALTER DEFAULT PRIVILEGES IN SCHEMA [schema name] GRANT SELECT, INSERT, UPDATE, DELETE ON TABLES TO [read/write application group name];
 ALTER DEFAULT PRIVILEGES IN SCHEMA [schema] GRANT USAGE ON SEQUENCES TO [read/write application group name];
 
-CREATE USER [read/write application user] IN ROLE [read/write application group name] WITH PASSWORD '[read/write application user password]';
+CREATE USER [read/write application user] WITH ENCRYPTED PASSWORD '[read/write application user password]' IN ROLE [read/write application group name];
 ALTER USER [read/write application user] SET SEARCH_PATH TO [schema name];
diff --git a/create-postgres-db-and-schema.sql b/create-postgres-db-and-schema.sql
@@ -6,7 +6,7 @@ REVOKE ALL ON DATABASE [database name] FROM PUBLIC;
 REVOKE ALL ON ALL TABLES IN SCHEMA public FROM PUBLIC;
 
 -- log in as [database owner name] to [database name] db
-CREATE SCHEMA [schema name] AUTHORIZATION [database owner name];
+CREATE SCHEMA [schema name];
 
 CREATE ROLE [read/write application group name] NOINHERIT;
 GRANT CONNECT ON DATABASE [database name] TO [read/write application group name];

diff --git a/create-postgres-db-and-schema.sql b/create-postgres-db-and-schema.sql
@@ -6,7 +6,7 @@ REVOKE ALL ON DATABASE [database name] FROM PUBLIC;
 REVOKE ALL ON ALL TABLES IN SCHEMA public FROM PUBLIC;
 
 -- log in as [database owner name] to [database name] db
-CREATE SCHEMA [schema name];
+CREATE SCHEMA [schema name] AUTHORIZATION [database owner name];
 
 CREATE ROLE [read/write application group name] NOINHERIT;
 GRANT CONNECT ON DATABASE [database name] TO [read/write application group name];

diff --git a/create-postgres-db-and-schema.sql b/create-postgres-db-and-schema.sql
@@ -6,6 +6,7 @@ REVOKE ALL ON DATABASE [database name] FROM PUBLIC;
 REVOKE ALL ON ALL TABLES IN SCHEMA public FROM PUBLIC;
 
 -- log in as [database owner name] to [database name] db
+CREATE SCHEMA [schema name];
 
 CREATE ROLE [read/write application group name] NOINHERIT;
 GRANT CONNECT ON DATABASE [database name] TO [read/write application group name];

diff --git a/create-postgres-db-and-schema.sql b/create-postgres-db-and-schema.sql
@@ -16,4 +16,4 @@ ALTER DEFAULT PRIVILEGES IN SCHEMA [schema name] GRANT SELECT, INSERT, UPDATE, D
 ALTER DEFAULT PRIVILEGES IN SCHEMA [schema] GRANT USAGE ON SEQUENCES TO [read/write application group name];
 
 CREATE USER [read/write application user] IN ROLE [read/write application group name] WITH PASSWORD '[read/write application user password]';
-ALTER USER app_user SET SEARCH_PATH TO [schema name];
+ALTER USER [read/write application user] SET SEARCH_PATH TO [schema name];
diff --git a/create-postgres-db-and-schema.sql b/create-postgres-db-and-schema.sql
@@ -0,0 +1,19 @@
+CREATE USER [database owner name] CREATEROLE WITH PASSWORD '[database owner's password]';
+CREATE DATABASE [database name] OWNER [database owner name];
+
+REVOKE CREATE ON SCHEMA public FROM PUBLIC;
+REVOKE ALL ON DATABASE [database name] FROM PUBLIC;
+REVOKE ALL ON ALL TABLES IN SCHEMA public FROM PUBLIC;
+
+-- log in as [database owner name] to [database name] db
+
+CREATE ROLE [read/write application group name] NOINHERIT;
+GRANT CONNECT ON DATABASE [database name] TO [read/write application group name];
+GRANT USAGE ON SCHEMA [schema name] TO [read/write application group name];
+GRANT SELECT, INSERT, UPDATE, DELETE ON ALL TABLES IN SCHEMA [schema name] TO [read/write application group name];
+GRANT USAGE ON ALL SEQUENCES IN SCHEMA [schema name] TO [read/write application group name];
+ALTER DEFAULT PRIVILEGES IN SCHEMA [schema name] GRANT SELECT, INSERT, UPDATE, DELETE ON TABLES TO [read/write application group name];
+ALTER DEFAULT PRIVILEGES IN SCHEMA [schema] GRANT USAGE ON SEQUENCES TO [read/write application group name];
+
+CREATE USER [read/write application user] IN ROLE [read/write application group name] WITH PASSWORD '[read/write application user password]';
+ALTER USER app_user SET SEARCH_PATH TO [schema name];
No results found