Layer: services

Module: postgresql

Tunables Interfaces Templates

Description:

PostgreSQL relational database


Tunables:

sepgsql_enable_users_ddl
Default value

true

Description

Allow unprived users to execute DDL statement

Return

Interfaces:

postgresql_admin( domain , role , terminal )
Summary

All of the rules required to administrate an postgresql environment

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
role

The role to be allowed to manage the postgresql domain.

No
terminal

The type of the terminal allow the postgresql domain to use.

No
postgresql_blob_object( type )
Summary

Marks as a SE-PostgreSQL binary large object type

Parameters
Parameter:Description:Optional:
type

Type marked as a database binary large object type.

No
postgresql_database_object( type )
Summary

Marks as a SE-PostgreSQL database object type

Parameters
Parameter:Description:Optional:
type

Type marked as a database object type.

No
postgresql_domtrans( domain )
Summary

Execute postgresql in the postgresql domain.

Parameters
Parameter:Description:Optional:
domain

The type of the process performing this action.

No
postgresql_loadable_module( type )
Summary

Marks as a SE-PostgreSQL loadable shared library module

Parameters
Parameter:Description:Optional:
type

Type marked as a database object type.

No
postgresql_manage_db( domain )
Summary

Allow the specified domain to manage postgresql's database.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
postgresql_procedure_object( type )
Summary

Marks as a SE-PostgreSQL procedure object type

Parameters
Parameter:Description:Optional:
type

Type marked as a database object type.

No
postgresql_read_config( domain )
Summary

Allow the specified domain to read postgresql's etc.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
postgresql_script_domtrans( domain )
Summary

Execute postgresql server in the posgresql domain.

Parameters
Parameter:Description:Optional:
domain

The type of the process performing this action.

No
postgresql_search_db( domain )
Summary

Allow the specified domain to search postgresql's database directory.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
postgresql_stream_connect( domain )
Summary

Allow the specified domain to connect to postgresql with a unix socket.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
postgresql_system_table_object( type )
Summary

Marks as a SE-PostgreSQL system table/column/tuple object type

Parameters
Parameter:Description:Optional:
type

Type marked as a table/column/tuple object type.

No
postgresql_table_object( type )
Summary

Marks as a SE-PostgreSQL table/column/tuple object type

Parameters
Parameter:Description:Optional:
type

Type marked as a table/column/tuple object type.

No
postgresql_tcp_connect( domain )
Summary

Allow the specified domain to connect to postgresql with a tcp socket.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
postgresql_unconfined( domain )
Summary

Allow the specified domain unconfined accesses to any database objects managed by SE-PostgreSQL,

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
postgresql_unpriv_client( domain )
Summary

Allow the specified domain unprivileged accesses to unifined database objects managed by SE-PostgreSQL,

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
Return

Templates:

postgresql_userdom_template( userdomain_prefix , user_domain , user_role )
Summary

The userdomain template for the SE-PostgreSQL.

Description

This template creates a delivered types which are used for given userdomains.

Parameters
Parameter:Description:Optional:
userdomain_prefix

The prefix of the user domain (e.g., user is the prefix for user_t).

No
user_domain

The type of the user domain.

No
user_role

The role associated with the user domain.

No
Return