For Your Eyes Only: Roles, Privileges, and Security in PostgreSQL | Citus Con 2023

Video of a conference talk and demo about defining the Principle of Least Privileges and how this philosophy influences roles and privileges in PostgreSQL—delivered at Citus Con: An Event for Postgres 2023. In this talk, Ryan Booz covers the importance of object ownership in PostgreSQL, how group and user roles can work in unison to effectively manage permissions, multiple ways to manage default privileges, and which privileges should always be modified in any new PostgreSQL database. Ryan also covers how recent Postgres releases are laying a foundation for more flexible and robust security management in the years ahead. Ryan Booz is an Advocate at Redgate focusing on PostgreSQL. Ryan has been working as a PostgreSQL advocate, developer, DBA, and product manager for more than 20 years, primarily working with time-series data on PostgreSQL and the Microsoft Data Platform. Ryan is a long-time DBA, starting with MySQL and Postgres databases in the late 90s. He spent more than 15 years working with SQL Server before returning to PostgreSQL full-time in 2018. ► Video bookmarks: ⏩ 00:00 Introduction ⏩ 02:10 Building Blocks of Postgres Roles ⏩ 06:06 Roles within Postgres ⏩ 09:22 Special Roles within Postgres ⏩ 13:56 Privileges: Rights to databases & database objects ⏩ 16:28 Inheritance & how to utilize it ⏩ 18:07 Principle of Least Privilege ⏩ 21:57 Demo of Roles & Privileges in Postgres ✅ Learn more: Watch more Citus Con 2023 talks: 📕 Everything you need to know about Citus Con: An Event for Postgres can be found at: 📌 Let’s connect:   Twitter – @CitusCon, More resources: 📣 Slides for Ryan’s talk: #CitusCon #PostgreSQL #Security