Grant Hasura user additional privileges.

Author: jarkkoka

azuredbmock/00-initialize.sql

@@ -24,8 +24,16 @@ CREATE EXTENSION IF NOT EXISTS btree_gist;
 -- allow hasura to create new schemas
 GRANT CREATE ON DATABASE xxx_db_hasura_name_xxx TO xxx_db_hasura_username_xxx;
 
--- grant usage access to the public schema to the hasura user
-GRANT USAGE ON SCHEMA public TO xxx_db_hasura_username_xxx;
+-- grant select permissions on information_schema and pg_catalog to the hasura
+-- user
+GRANT SELECT ON ALL TABLES IN SCHEMA information_schema TO xxx_db_hasura_username_xxx;
+GRANT SELECT ON ALL TABLES IN SCHEMA pg_catalog TO xxx_db_hasura_username_xxx;
+
+-- grant all privileges on all tables in the public schema to the hasura user
+GRANT ALL ON SCHEMA public TO xxx_db_hasura_username_xxx;
+GRANT ALL ON ALL TABLES IN SCHEMA public TO xxx_db_hasura_username_xxx;
+GRANT ALL ON ALL SEQUENCES IN SCHEMA public TO xxx_db_hasura_username_xxx;
+GRANT ALL ON ALL FUNCTIONS IN SCHEMA public TO xxx_db_hasura_username_xxx;
 
 -- create database for auth and give ALL privileges to auth db user
 CREATE DATABASE xxx_db_auth_name_xxx;
@@ -75,6 +83,17 @@ ALTER SCHEMA public OWNER TO CURRENT_USER;
 CREATE EXTENSION IF NOT EXISTS pgcrypto;
 CREATE EXTENSION IF NOT EXISTS btree_gist;
 
+-- grant select permissions on information_schema and pg_catalog to the hasura
+-- user
+GRANT SELECT ON ALL TABLES IN SCHEMA information_schema TO xxx_db_hasura_username_xxx;
+GRANT SELECT ON ALL TABLES IN SCHEMA pg_catalog TO xxx_db_hasura_username_xxx;
+
+-- grant all privileges on all tables in the public schema to the hasura user
+GRANT ALL ON SCHEMA public TO xxx_db_hasura_username_xxx;
+GRANT ALL ON ALL TABLES IN SCHEMA public TO xxx_db_hasura_username_xxx;
+GRANT ALL ON ALL SEQUENCES IN SCHEMA public TO xxx_db_hasura_username_xxx;
+GRANT ALL ON ALL FUNCTIONS IN SCHEMA public TO xxx_db_hasura_username_xxx;
+
 -- grant usage to the public schema to the timetables-api user
 GRANT USAGE ON SCHEMA public TO xxx_db_timetables_api_username_xxx;