Mercurial > gemma
view schema/std_login_roles.sql @ 4161:64cd18281c76
Improve performance of row level security policies
Using constraint_column_usage instead of key_column_usage makes
the query twice as fast. I did not explore why. Let's just take it.
Using 'EXISTS(... WHERE ... = value) is often more efficient than
value IN(...) since it allows the inner query to be executed only
up to the point where it turns out to return more than nothing with
filtering directly in place.
author | Tom Gottfried <tom@intevation.de> |
---|---|
date | Fri, 02 Aug 2019 17:14:13 +0200 |
parents | 35acb7f9ae0c |
children | 5e38667f740c |
line wrap: on
line source
-- This is Free Software under GNU Affero General Public License v >= 3.0 -- without warranty, see README.md and license for details. -- SPDX-License-Identifier: AGPL-3.0-or-later -- License-Filename: LICENSES/AGPL-3.0.txt -- Copyright (C) 2018 by via donau -- – Österreichische Wasserstraßen-Gesellschaft mbH -- Software engineering by Intevation GmbH -- Author(s): -- * Sascha Wilde <wilde@intevation.de> -- * Tom Gottfried <tom@intevation.de> BEGIN; -- -- Standard users for the GEMMA database -- -- NOTE: Passwords for these roles must be set during initial setup of -- the database. -- -- Admin User -- -- We need an empty dummy country for the default admin, as the user is -- not supposed to work on data, it should be only used to create -- personalized accounts. INSERT INTO countries (country_code) VALUES ('--'); INSERT INTO users.responsibility_areas (country, area) VALUES ('--', ST_GeomFromText('MULTIPOLYGON(((0 0, 1 0, 1 1, 0 1, 0 0)))', 4326)); -- This initial Admin account is used to bootstrap the personalized accounts. INSERT INTO users.list_users VALUES ( 'sys_admin', 'sysadmin', :'adminpw', '--', 'BOX(9.52115482500011 46.3786430870001,17.1483378500001 49.0097744750001)', ''); -- -- Functional Users -- -- Used by GeoServer and backend CREATE ROLE meta_login IN ROLE metamorph LOGIN PASSWORD :'metapw'; -- Emit messages to the client if everything went ok SELECT 'Default admin user ''sysadmin'' created with password ' || :'adminpw'; SELECT 'Backend user ''meta_login'' created with password ' || :'metapw'; COMMIT;