Postgres 9.5 Release Notes(postgresql.org) |
Postgres 9.5 Release Notes(postgresql.org) |
In old-school systems you normally have one database user and a connection pool set up in the app with that user. Row level access is handeld with join tables to sort out what data is accessible for the specific users (sent as parameter to most queries).
With row-level security you would crate a db-user for each application user and also its own connection pool?
This allows pooling.
I made a quick app with pg 9.5 rc1, rls, spring data rest which I'm hoping to share next week.
Personally, I always read the release notes but am less interested in the press release. I think many others prefer the opposite, hence my posting both. You raise a valid point though.