Baoding-FenShuaJiang
/
Green_GoodERP18_FSJ_Standard
关注 1
点赞 0
百科 捐赠
gooderp18绿色标准版
您最多选择25个主题 主题必须以字母或数字开头,可以包含连字符 (-),并且长度不得超过35个字符
分支: master
分支列表 标签列表
${ item.name }
创建分支 ${ searchTerm }
从 'master'
${ noResults }
Green_GoodERP18_FSJ_Standard/PostgreSQL/doc/postgresql/html/ddl-schemas.html

320 行
22KB
原始文件 永久链接 Blame 文件历史 

  1. <?xml version="1.0" encoding="UTF-8" standalone="no"?>

  2. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>5.9. Schemas</title><link rel="stylesheet" type="text/css" href="stylesheet.css" /><link rev="made" href="pgsql-docs@lists.postgresql.org" /><meta name="generator" content="DocBook XSL Stylesheets V1.79.1" /><link rel="prev" href="ddl-rowsecurity.html" title="5.8. Row Security Policies" /><link rel="next" href="ddl-inherit.html" title="5.10. Inheritance" /></head><body><div xmlns="http://www.w3.org/TR/xhtml1/transitional" class="navheader"><table width="100%" summary="Navigation header"><tr><th colspan="5" align="center">5.9. Schemas</th></tr><tr><td width="10%" align="left"><a accesskey="p" href="ddl-rowsecurity.html" title="5.8. Row Security Policies">Prev</a> </td><td width="10%" align="left"><a accesskey="u" href="ddl.html" title="Chapter 5. Data Definition">Up</a></td><th width="60%" align="center">Chapter 5. Data Definition</th><td width="10%" align="right"><a accesskey="h" href="index.html" title="PostgreSQL 12.4 Documentation">Home</a></td><td width="10%" align="right"> <a accesskey="n" href="ddl-inherit.html" title="5.10. Inheritance">Next</a></td></tr></table><hr></hr></div><div class="sect1" id="DDL-SCHEMAS"><div class="titlepage"><div><div><h2 class="title" style="clear: both">5.9. Schemas</h2></div></div></div><div class="toc"><dl class="toc"><dt><span class="sect2"><a href="ddl-schemas.html#DDL-SCHEMAS-CREATE">5.9.1. Creating a Schema</a></span></dt><dt><span class="sect2"><a href="ddl-schemas.html#DDL-SCHEMAS-PUBLIC">5.9.2. The Public Schema</a></span></dt><dt><span class="sect2"><a href="ddl-schemas.html#DDL-SCHEMAS-PATH">5.9.3. The Schema Search Path</a></span></dt><dt><span class="sect2"><a href="ddl-schemas.html#DDL-SCHEMAS-PRIV">5.9.4. Schemas and Privileges</a></span></dt><dt><span class="sect2"><a href="ddl-schemas.html#DDL-SCHEMAS-CATALOG">5.9.5. The System Catalog Schema</a></span></dt><dt><span class="sect2"><a href="ddl-schemas.html#DDL-SCHEMAS-PATTERNS">5.9.6. Usage Patterns</a></span></dt><dt><span class="sect2"><a href="ddl-schemas.html#DDL-SCHEMAS-PORTABILITY">5.9.7. Portability</a></span></dt></dl></div><a id="id-1.5.4.11.2" class="indexterm"></a><p>

  3.    A <span class="productname">PostgreSQL</span> database cluster contains

  4.    one or more named databases.  Roles and a few other object types are

  5.    shared across the entire cluster.  A client connection to the server

  6.    can only access data in a single database, the one specified in the

  7.    connection request.

  8.   </p><div class="note"><h3 class="title">Note</h3><p>

  9.     Users of a cluster do not necessarily have the privilege to access every

  10.     database in the cluster.  Sharing of role names means that there

  11.     cannot be different roles named, say, <code class="literal">joe</code> in two databases

  12.     in the same cluster; but the system can be configured to allow

  13.     <code class="literal">joe</code> access to only some of the databases.

  14.    </p></div><p>

  15.    A database contains one or more named <em class="firstterm">schemas</em>, which

  16.    in turn contain tables.  Schemas also contain other kinds of named

  17.    objects, including data types, functions, and operators.  The same

  18.    object name can be used in different schemas without conflict; for

  19.    example, both <code class="literal">schema1</code> and <code class="literal">myschema</code> can

  20.    contain tables named <code class="literal">mytable</code>.  Unlike databases,

  21.    schemas are not rigidly separated: a user can access objects in any

  22.    of the schemas in the database they are connected to, if they have

  23.    privileges to do so.

  24.   </p><p>

  25.    There are several reasons why one might want to use schemas:

  26. 

  27.    </p><div class="itemizedlist"><ul class="itemizedlist" style="list-style-type: disc; "><li class="listitem"><p>

  28.       To allow many users to use one database without interfering with

  29.       each other.

  30.      </p></li><li class="listitem"><p>

  31.       To organize database objects into logical groups to make them

  32.       more manageable.

  33.      </p></li><li class="listitem"><p>

  34.       Third-party applications can be put into separate schemas so

  35.       they do not collide with the names of other objects.

  36.      </p></li></ul></div><p>

  37. 

  38.    Schemas are analogous to directories at the operating system level,

  39.    except that schemas cannot be nested.

  40.   </p><div class="sect2" id="DDL-SCHEMAS-CREATE"><div class="titlepage"><div><div><h3 class="title">5.9.1. Creating a Schema</h3></div></div></div><a id="id-1.5.4.11.7.2" class="indexterm"></a><p>

  41.     To create a schema, use the <a class="xref" href="sql-createschema.html" title="CREATE SCHEMA"><span class="refentrytitle">CREATE SCHEMA</span></a>

  42.     command.  Give the schema a name

  43.     of your choice.  For example:

  44. </p><pre class="programlisting">

  45. CREATE SCHEMA myschema;

  46. </pre><p>

  47.    </p><a id="id-1.5.4.11.7.4" class="indexterm"></a><a id="id-1.5.4.11.7.5" class="indexterm"></a><p>

  48.     To create or access objects in a schema, write a

  49.     <em class="firstterm">qualified name</em> consisting of the schema name and

  50.     table name separated by a dot:

  51. </p><pre class="synopsis">

  52. <em class="replaceable"><code>schema</code></em><code class="literal">.</code><em class="replaceable"><code>table</code></em>

  53. </pre><p>

  54.     This works anywhere a table name is expected, including the table

  55.     modification commands and the data access commands discussed in

  56.     the following chapters.

  57.     (For brevity we will speak of tables only, but the same ideas apply

  58.     to other kinds of named objects, such as types and functions.)

  59.    </p><p>

  60.     Actually, the even more general syntax

  61. </p><pre class="synopsis">

  62. <em class="replaceable"><code>database</code></em><code class="literal">.</code><em class="replaceable"><code>schema</code></em><code class="literal">.</code><em class="replaceable"><code>table</code></em>

  63. </pre><p>

  64.     can be used too, but at present this is just for <span class="foreignphrase"><em class="foreignphrase">pro

  65.     forma</em></span> compliance with the SQL standard.  If you write a database name,

  66.     it must be the same as the database you are connected to.

  67.    </p><p>

  68.     So to create a table in the new schema, use:

  69. </p><pre class="programlisting">

  70. CREATE TABLE myschema.mytable (

  71.  ...

  72. );

  73. </pre><p>

  74.    </p><a id="id-1.5.4.11.7.9" class="indexterm"></a><p>

  75.     To drop a schema if it's empty (all objects in it have been

  76.     dropped), use:

  77. </p><pre class="programlisting">

  78. DROP SCHEMA myschema;

  79. </pre><p>

  80.     To drop a schema including all contained objects, use:

  81. </p><pre class="programlisting">

  82. DROP SCHEMA myschema CASCADE;

  83. </pre><p>

  84.     See <a class="xref" href="ddl-depend.html" title="5.14. Dependency Tracking">Section 5.14</a> for a description of the general

  85.     mechanism behind this.

  86.    </p><p>

  87.     Often you will want to create a schema owned by someone else

  88.     (since this is one of the ways to restrict the activities of your

  89.     users to well-defined namespaces).  The syntax for that is:

  90. </p><pre class="programlisting">

  91. CREATE SCHEMA <em class="replaceable"><code>schema_name</code></em> AUTHORIZATION <em class="replaceable"><code>user_name</code></em>;

  92. </pre><p>

  93.     You can even omit the schema name, in which case the schema name

  94.     will be the same as the user name.  See <a class="xref" href="ddl-schemas.html#DDL-SCHEMAS-PATTERNS" title="5.9.6. Usage Patterns">Section 5.9.6</a> for how this can be useful.

  95.    </p><p>

  96.     Schema names beginning with <code class="literal">pg_</code> are reserved for

  97.     system purposes and cannot be created by users.

  98.    </p></div><div class="sect2" id="DDL-SCHEMAS-PUBLIC"><div class="titlepage"><div><div><h3 class="title">5.9.2. The Public Schema</h3></div></div></div><a id="id-1.5.4.11.8.2" class="indexterm"></a><p>

  99.     In the previous sections we created tables without specifying any

  100.     schema names.  By default such tables (and other objects) are

  101.     automatically put into a schema named <span class="quote">“<span class="quote">public</span>”</span>.  Every new

  102.     database contains such a schema.  Thus, the following are equivalent:

  103. </p><pre class="programlisting">

  104. CREATE TABLE products ( ... );

  105. </pre><p>

  106.     and:

  107. </p><pre class="programlisting">

  108. CREATE TABLE public.products ( ... );

  109. </pre><p>

  110.    </p></div><div class="sect2" id="DDL-SCHEMAS-PATH"><div class="titlepage"><div><div><h3 class="title">5.9.3. The Schema Search Path</h3></div></div></div><a id="id-1.5.4.11.9.2" class="indexterm"></a><a id="id-1.5.4.11.9.3" class="indexterm"></a><a id="id-1.5.4.11.9.4" class="indexterm"></a><p>

  111.     Qualified names are tedious to write, and it's often best not to

  112.     wire a particular schema name into applications anyway.  Therefore

  113.     tables are often referred to by <em class="firstterm">unqualified names</em>,

  114.     which consist of just the table name.  The system determines which table

  115.     is meant by following a <em class="firstterm">search path</em>, which is a list

  116.     of schemas to look in.  The first matching table in the search path

  117.     is taken to be the one wanted.  If there is no match in the search

  118.     path, an error is reported, even if matching table names exist

  119.     in other schemas in the database.

  120.    </p><p>

  121.     The ability to create like-named objects in different schemas complicates

  122.     writing a query that references precisely the same objects every time.  It

  123.     also opens up the potential for users to change the behavior of other

  124.     users' queries, maliciously or accidentally.  Due to the prevalence of

  125.     unqualified names in queries and their use

  126.     in <span class="productname">PostgreSQL</span> internals, adding a schema

  127.     to <code class="varname">search_path</code> effectively trusts all users having

  128.     <code class="literal">CREATE</code> privilege on that schema.  When you run an

  129.     ordinary query, a malicious user able to create objects in a schema of

  130.     your search path can take control and execute arbitrary SQL functions as

  131.     though you executed them.

  132.    </p><a id="id-1.5.4.11.9.7" class="indexterm"></a><p>

  133.     The first schema named in the search path is called the current schema.

  134.     Aside from being the first schema searched, it is also the schema in

  135.     which new tables will be created if the <code class="command">CREATE TABLE</code>

  136.     command does not specify a schema name.

  137.    </p><a id="id-1.5.4.11.9.9" class="indexterm"></a><p>

  138.     To show the current search path, use the following command:

  139. </p><pre class="programlisting">

  140. SHOW search_path;

  141. </pre><p>

  142.     In the default setup this returns:

  143. </p><pre class="screen">

  144.  search_path

  145. --------------

  146.  "$user", public

  147. </pre><p>

  148.     The first element specifies that a schema with the same name as

  149.     the current user is to be searched.  If no such schema exists,

  150.     the entry is ignored.  The second element refers to the

  151.     public schema that we have seen already.

  152.    </p><p>

  153.     The first schema in the search path that exists is the default

  154.     location for creating new objects.  That is the reason that by

  155.     default objects are created in the public schema.  When objects

  156.     are referenced in any other context without schema qualification

  157.     (table modification, data modification, or query commands) the

  158.     search path is traversed until a matching object is found.

  159.     Therefore, in the default configuration, any unqualified access

  160.     again can only refer to the public schema.

  161.    </p><p>

  162.     To put our new schema in the path, we use:

  163. </p><pre class="programlisting">

  164. SET search_path TO myschema,public;

  165. </pre><p>

  166.     (We omit the <code class="literal">$user</code> here because we have no

  167.     immediate need for it.)  And then we can access the table without

  168.     schema qualification:

  169. </p><pre class="programlisting">

  170. DROP TABLE mytable;

  171. </pre><p>

  172.     Also, since <code class="literal">myschema</code> is the first element in

  173.     the path, new objects would by default be created in it.

  174.    </p><p>

  175.     We could also have written:

  176. </p><pre class="programlisting">

  177. SET search_path TO myschema;

  178. </pre><p>

  179.     Then we no longer have access to the public schema without

  180.     explicit qualification.  There is nothing special about the public

  181.     schema except that it exists by default.  It can be dropped, too.

  182.    </p><p>

  183.     See also <a class="xref" href="functions-info.html" title="9.25. System Information Functions and Operators">Section 9.25</a> for other ways to manipulate

  184.     the schema search path.

  185.    </p><p>

  186.     The search path works in the same way for data type names, function names,

  187.     and operator names as it does for table names.  Data type and function

  188.     names can be qualified in exactly the same way as table names.  If you

  189.     need to write a qualified operator name in an expression, there is a

  190.     special provision: you must write

  191. </p><pre class="synopsis">

  192. <code class="literal">OPERATOR(</code><em class="replaceable"><code>schema</code></em><code class="literal">.</code><em class="replaceable"><code>operator</code></em><code class="literal">)</code>

  193. </pre><p>

  194.     This is needed to avoid syntactic ambiguity.  An example is:

  195. </p><pre class="programlisting">

  196. SELECT 3 OPERATOR(pg_catalog.+) 4;

  197. </pre><p>

  198.     In practice one usually relies on the search path for operators,

  199.     so as not to have to write anything so ugly as that.

  200.    </p></div><div class="sect2" id="DDL-SCHEMAS-PRIV"><div class="titlepage"><div><div><h3 class="title">5.9.4. Schemas and Privileges</h3></div></div></div><a id="id-1.5.4.11.10.2" class="indexterm"></a><p>

  201.     By default, users cannot access any objects in schemas they do not

  202.     own.  To allow that, the owner of the schema must grant the

  203.     <code class="literal">USAGE</code> privilege on the schema.  To allow users

  204.     to make use of the objects in the schema, additional privileges

  205.     might need to be granted, as appropriate for the object.

  206.    </p><p>

  207.     A user can also be allowed to create objects in someone else's

  208.     schema.  To allow that, the <code class="literal">CREATE</code> privilege on

  209.     the schema needs to be granted.  Note that by default, everyone

  210.     has <code class="literal">CREATE</code> and <code class="literal">USAGE</code> privileges on

  211.     the schema

  212.     <code class="literal">public</code>.  This allows all users that are able to

  213.     connect to a given database to create objects in its

  214.     <code class="literal">public</code> schema.

  215.     Some <a class="link" href="ddl-schemas.html#DDL-SCHEMAS-PATTERNS" title="5.9.6. Usage Patterns">usage patterns</a> call for

  216.     revoking that privilege:

  217. </p><pre class="programlisting">

  218. REVOKE CREATE ON SCHEMA public FROM PUBLIC;

  219. </pre><p>

  220.     (The first <span class="quote">“<span class="quote">public</span>”</span> is the schema, the second

  221.     <span class="quote">“<span class="quote">public</span>”</span> means <span class="quote">“<span class="quote">every user</span>”</span>.  In the

  222.     first sense it is an identifier, in the second sense it is a

  223.     key word, hence the different capitalization; recall the

  224.     guidelines from <a class="xref" href="sql-syntax-lexical.html#SQL-SYNTAX-IDENTIFIERS" title="4.1.1. Identifiers and Key Words">Section 4.1.1</a>.)

  225.    </p></div><div class="sect2" id="DDL-SCHEMAS-CATALOG"><div class="titlepage"><div><div><h3 class="title">5.9.5. The System Catalog Schema</h3></div></div></div><a id="id-1.5.4.11.11.2" class="indexterm"></a><p>

  226.     In addition to <code class="literal">public</code> and user-created schemas, each

  227.     database contains a <code class="literal">pg_catalog</code> schema, which contains

  228.     the system tables and all the built-in data types, functions, and

  229.     operators.  <code class="literal">pg_catalog</code> is always effectively part of

  230.     the search path.  If it is not named explicitly in the path then

  231.     it is implicitly searched <span class="emphasis"><em>before</em></span> searching the path's

  232.     schemas.  This ensures that built-in names will always be

  233.     findable.  However, you can explicitly place

  234.     <code class="literal">pg_catalog</code> at the end of your search path if you

  235.     prefer to have user-defined names override built-in names.

  236.    </p><p>

  237.     Since system table names begin with <code class="literal">pg_</code>, it is best to

  238.     avoid such names to ensure that you won't suffer a conflict if some

  239.     future version defines a system table named the same as your

  240.     table.  (With the default search path, an unqualified reference to

  241.     your table name would then be resolved as the system table instead.)

  242.     System tables will continue to follow the convention of having

  243.     names beginning with <code class="literal">pg_</code>, so that they will not

  244.     conflict with unqualified user-table names so long as users avoid

  245.     the <code class="literal">pg_</code> prefix.

  246.    </p></div><div class="sect2" id="DDL-SCHEMAS-PATTERNS"><div class="titlepage"><div><div><h3 class="title">5.9.6. Usage Patterns</h3></div></div></div><p>

  247.     Schemas can be used to organize your data in many ways.

  248.     A <em class="firstterm">secure schema usage pattern</em> prevents untrusted

  249.     users from changing the behavior of other users' queries.  When a database

  250.     does not use a secure schema usage pattern, users wishing to securely

  251.     query that database would take protective action at the beginning of each

  252.     session.  Specifically, they would begin each session by

  253.     setting <code class="varname">search_path</code> to the empty string or otherwise

  254.     removing non-superuser-writable schemas

  255.     from <code class="varname">search_path</code>.  There are a few usage patterns

  256.     easily supported by the default configuration:

  257.     </p><div class="itemizedlist"><ul class="itemizedlist" style="list-style-type: disc; "><li class="listitem"><p>

  258.        Constrain ordinary users to user-private schemas.  To implement this,

  259.        issue <code class="literal">REVOKE CREATE ON SCHEMA public FROM PUBLIC</code>,

  260.        and create a schema for each user with the same name as that user.

  261.        Recall that the default search path starts

  262.        with <code class="literal">$user</code>, which resolves to the user name.

  263.        Therefore, if each user has a separate schema, they access their own

  264.        schemas by default.  After adopting this pattern in a database where

  265.        untrusted users had already logged in, consider auditing the public

  266.        schema for objects named like objects in

  267.        schema <code class="literal">pg_catalog</code>.  This pattern is a secure schema

  268.        usage pattern unless an untrusted user is the database owner or holds

  269.        the <code class="literal">CREATEROLE</code> privilege, in which case no secure

  270.        schema usage pattern exists.

  271.       </p><p>

  272.       </p></li><li class="listitem"><p>

  273.        Remove the public schema from the default search path, by modifying

  274.        <a class="link" href="config-setting.html#CONFIG-SETTING-CONFIGURATION-FILE" title="19.1.2. Parameter Interaction via the Configuration File"><code class="filename">postgresql.conf</code></a>

  275.        or by issuing <code class="literal">ALTER ROLE ALL SET search_path =

  276.        "$user"</code>.  Everyone retains the ability to create objects in

  277.        the public schema, but only qualified names will choose those objects.

  278.        While qualified table references are fine, calls to functions in the

  279.        public schema <a class="link" href="typeconv-func.html" title="10.3. Functions">will be unsafe or

  280.        unreliable</a>.  If you create functions or extensions in the public

  281.        schema, use the first pattern instead.  Otherwise, like the first

  282.        pattern, this is secure unless an untrusted user is the database owner

  283.        or holds the <code class="literal">CREATEROLE</code> privilege.

  284.       </p></li><li class="listitem"><p>

  285.        Keep the default.  All users access the public schema implicitly.  This

  286.        simulates the situation where schemas are not available at all, giving

  287.        a smooth transition from the non-schema-aware world.  However, this is

  288.        never a secure pattern.  It is acceptable only when the database has a

  289.        single user or a few mutually-trusting users.

  290.       </p></li></ul></div><p>

  291.    </p><p>

  292.     For any pattern, to install shared applications (tables to be used by

  293.     everyone, additional functions provided by third parties, etc.), put them

  294.     into separate schemas.  Remember to grant appropriate privileges to allow

  295.     the other users to access them.  Users can then refer to these additional

  296.     objects by qualifying the names with a schema name, or they can put the

  297.     additional schemas into their search path, as they choose.

  298.    </p></div><div class="sect2" id="DDL-SCHEMAS-PORTABILITY"><div class="titlepage"><div><div><h3 class="title">5.9.7. Portability</h3></div></div></div><p>

  299.     In the SQL standard, the notion of objects in the same schema

  300.     being owned by different users does not exist.  Moreover, some

  301.     implementations do not allow you to create schemas that have a

  302.     different name than their owner.  In fact, the concepts of schema

  303.     and user are nearly equivalent in a database system that

  304.     implements only the basic schema support specified in the

  305.     standard.  Therefore, many users consider qualified names to

  306.     really consist of

  307.     <code class="literal"><em class="replaceable"><code>user_name</code></em>.<em class="replaceable"><code>table_name</code></em></code>.

  308.     This is how <span class="productname">PostgreSQL</span> will effectively

  309.     behave if you create a per-user schema for every user.

  310.    </p><p>

  311.     Also, there is no concept of a <code class="literal">public</code> schema in the

  312.     SQL standard.  For maximum conformance to the standard, you should

  313.     not use the <code class="literal">public</code> schema.

  314.    </p><p>

  315.     Of course, some SQL database systems might not implement schemas

  316.     at all, or provide namespace support by allowing (possibly

  317.     limited) cross-database access.  If you need to work with those

  318.     systems, then maximum portability would be achieved by not using

  319.     schemas at all.

  320.    </p></div></div><div class="navfooter"><hr /><table width="100%" summary="Navigation footer"><tr><td width="40%" align="left"><a accesskey="p" href="ddl-rowsecurity.html">Prev</a> </td><td width="20%" align="center"><a accesskey="u" href="ddl.html">Up</a></td><td width="40%" align="right"> <a accesskey="n" href="ddl-inherit.html">Next</a></td></tr><tr><td width="40%" align="left" valign="top">5.8. Row Security Policies </td><td width="20%" align="center"><a accesskey="h" href="index.html">Home</a></td><td width="40%" align="right" valign="top"> 5.10. Inheritance</td></tr></table></div></body></html>
上海开阖软件有限公司 沪ICP备12045867号-1