RHeynsZa/gist:d3fafd829f274f6d65b50ed7d2e9ebb0

## gistfile1.txt
-- https://stackoverflow.com/questions/56940582/how-do-i-create-a-readonly-user-in-postgres-in-aws-rds
REVOKE CREATE ON SCHEMA public FROM public;

-- Create a group
CREATE ROLE postgres_ro_group;

-- Grant access to existing tables
GRANT USAGE ON SCHEMA public TO postgres_ro_group;
GRANT SELECT ON ALL TABLES IN SCHEMA public TO postgres_ro_group;
GRANT SELECT ON ALL SEQUENCES IN SCHEMA public TO postgres_ro_group;

-- Grant access to future tables
ALTER DEFAULT PRIVILEGES IN SCHEMA public GRANT SELECT ON TABLES TO postgres_ro_group;

-- Create a final user with password
CREATE USER postgres_ro WITH PASSWORD 'secret';
GRANT postgres_ro_group TO postgres_ro;
	-- https://stackoverflow.com/questions/56940582/how-do-i-create-a-readonly-user-in-postgres-in-aws-rds
	REVOKE CREATE ON SCHEMA public FROM public;

	-- Create a group
	CREATE ROLE postgres_ro_group;

	-- Grant access to existing tables
	GRANT USAGE ON SCHEMA public TO postgres_ro_group;
	GRANT SELECT ON ALL TABLES IN SCHEMA public TO postgres_ro_group;
	GRANT SELECT ON ALL SEQUENCES IN SCHEMA public TO postgres_ro_group;

	-- Grant access to future tables
	ALTER DEFAULT PRIVILEGES IN SCHEMA public GRANT SELECT ON TABLES TO postgres_ro_group;

	-- Create a final user with password
	CREATE USER postgres_ro WITH PASSWORD 'secret';
	GRANT postgres_ro_group TO postgres_ro;