I see the juxtaposition of these two errors and, given the dearth of Google search results, had to ask. What is the difference and what do I need to be doing here?
My guess is that you really want to recursively GRANT
the SELECT
right to every relation (table and view) within the database angel_research_production
. Correct?
If so, in PostgreSQL 9.0 and above you have:
GRANT { { SELECT | INSERT | UPDATE | DELETE | TRUNCATE | REFERENCES | TRIGGER }
[, ...] | ALL [ PRIVILEGES ] }
ON { [ TABLE ] table_name [, ...]
| ALL TABLES IN SCHEMA schema_name [, ...] }
TO { [ GROUP ] role_name | PUBLIC } [, ...] [ WITH GRANT OPTION ]
from the manual for GRANT. Note the ALL TABLES IN SCHEMA
clause. Usage:
GRANT SELECT ON ALL TABLES IN SCHEMA public TO angel_research;
If all your user-defined objects are in the public
schema (see below) that'll do the trick.
In prior versions there is no such feature, but user defined functions exist as workarounds.
Pg 9.0 also has ALTER DEFAULT PRIVILEGES, which changes the default privileges assigned to newly created objects. It does not affect existing objects.
As noted by TokenMacGuy, a relation is a table or view, not a database.
GRANT SELECT ON angel_research_production TO angel_research;
can be thought of as shorthand for:
GRANT SELECT ON TABLE angel_research_production TO angel_research
^^^^^
and that table(relation) doesn't exist, so you're getting the error reported above.
In the manual for GRANT or the psql
\h GRANT
output you'll see:
GRANT { { CREATE | CONNECT | TEMPORARY | TEMP } [, ...] | ALL [ PRIVILEGES ] }
ON DATABASE database_name [, ...]
TO { [ GROUP ] role_name | PUBLIC } [, ...] [ WITH GRANT OPTION ]
This shows that the privileges you can GRANT
to a database are CREATE
, CONNECT
and TEMPORARY
. There is no SELECT
right on a database.
There are four levels of organisation in Pg:
Cluster - controlled by the postmaster, accepts connections on a given IP/port combo, contains one or more databases including the built-in template0
, template1
and postgres
databases. Controlled by postgresql.conf
and pg_hba.conf
. Your DB cluster is often created for you by an installer or package. Not to be confused with the normal meaning of cluster as a compute cluster or the general english language meaning.
Database - contains one or more schemata or schemas. You connect to a specific database when connecting to Pg.
Schema - contains objects including relations. If you don't specify otherwise, anything user-created goes into the public
schema. Queries can reference objects in multiple schema explicitly or, via search_path, implicitly.
Objects - Somewhat PostgreSQL specific, anything (including a relation) that exists in a schema.
Relations - Things that look and behave like tables, like views and tables
Other objects also reside in schemas, like functions, casts, indexes, sequences, operators, aggregates, etc.
a relation is a table (or something that looks like one, eg a view), that is, it is a collection of rows, all with the same fields, and given some name to reference them by.
A database is a collection of relations and other entities (like triggers, functions and rules) that are kept together in some logical grouping.