Overview of Access Control in Mathesar

Mathesar manages data access using PostgreSQL’s powerful role-based permissions system. Users interact with the database through designated PostgreSQL roles, with their access determined by the privileges assigned to those roles.

Here’s how it works:

1. Mathesar Users: Everyone using Mathesar gets their own personal user account and has control over their password and username. Admin users have some additional privileges, but only for high-level Mathesar-specific operations like connecting databases and managing other users.

2. PostgreSQL roles: Within PostgreSQL, privileges on data can be granted to different roles at a granular level. Mathesar respects these privileges and also exposes functionality for you to see and modify them.

3. Stored Role Passwords: Mathesar stores the passwords for any roles that you would like to use to authenticate with PostgreSQL.

4. Collaborators: For a user to access a given database, an admin must add the user as a collaborator on that database and assign the user to a specific PostgreSQL role. You can configure separate Mathesar users to share the same PostgreSQL role if you like. Or you can use dedicated PostgreSQL roles for different users.

Mathesar metadata and data explorations are currently readable and writable by all collaborators on a database, regardless of their PostgreSQL role’s permissions or their user’s admin status. If you need to restrict access to metadata or data explorations, we would be curious to hear about your use case and welcome you to open an issue to discuss it.