terraform/website/source/docs/providers/postgresql/r/postgresql_schema.html.mark...

---
layout: "postgresql"
page_title: "PostgreSQL: postgresql_schema"
sidebar_current: "docs-postgresql-resource-postgresql_schema"
description: |-
  Creates and manages a schema within a PostgreSQL database.
---

# postgresql\_schema

The ``postgresql_schema`` resource creates and manages [schema
objects](https://www.postgresql.org/docs/current/static/ddl-schemas.html) within
a PostgreSQL database.


## Usage

```
resource "postgresql_role" "app_www" {
  name = "app_www"
}

resource "postgresql_role" "app_dba" {
  name = "app_dba"
}

resource "postgresql_role" "app_releng" {
  name = "app_releng"
}

resource "postgresql_schema" "my_schema" {
  name  = "my_schema"
  owner = "postgres"

  policy {
    usage = true
    role  = "${postgresql_role.app_www.name}"
  }

  # app_releng can create new objects in the schema.  This is the role that
  # migrations are executed as.
  policy {
    create = true
    usage  = true
    role   = "${postgresql_role.app_releng.name}"
  }

  policy {
    create_with_grant = true
    usage_with_grant  = true
    role              = "${postgresql_role.app_dba.name}"
  }
}
```

## Argument Reference

* `name` - (Required) The name of the schema. Must be unique in the PostgreSQL
  database instance where it is configured.
* `owner` - (Optional) The ROLE who owns the schema.
* `policy` - (Optional) Can be specified multiple times for each policy.  Each
    policy block supports fields documented below.

The `policy` block supports:

* `create` - (Optional) Should the specified ROLE have CREATE privileges to the specified SCHEMA.
* `create_with_grant` - (Optional) Should the specified ROLE have CREATE privileges to the specified SCHEMA and the ability to GRANT the CREATE privilege to other ROLEs.
* `role` - (Optional) The ROLE who is receiving the policy.  If this value is empty or not specified it implies the policy is referring to the [`PUBLIC` role](https://www.postgresql.org/docs/current/static/sql-grant.html).
* `usage` - (Optional) Should the specified ROLE have USAGE privileges to the specified SCHEMA.
* `usage_with_grant` - (Optional) Should the specified ROLE have USAGE privileges to the specified SCHEMA and the ability to GRANT the USAGE privilege to other ROLEs.

~> **NOTE on `policy`:** The permissions of a role specified in multiple policy blocks is cumulative.  For example, if the same role is specified in two different `policy` each with different permissions (e.g. `create` and `usage_with_grant`, respectively), then the specified role with have both `create` and `usage_with_grant` privileges.

## Import Example

`postgresql_schema` supports importing resources.  Supposing the following
Terraform:

```
resource "postgresql_schema" "public" {
  name = "public"
}

resource "postgresql_schema" "schema_foo" {
  name  = "my_schema"
  owner = "postgres"

  policy {
    usage = true
  }
}
```

It is possible to import a `postgresql_schema` resource with the following
command:

```
$ terraform import postgresql_schema.schema_foo my_schema
```

Where `my_schema` is the name of the schema in the PostgreSQL database and
`postgresql_schema.schema_foo` is the name of the resource whose state will be
populated as a result of the command.
Add PostgreSQL schema support 2016-12-12 16:35:41 +01:00			`---`
			`layout: "postgresql"`
			`page_title: "PostgreSQL: postgresql_schema"`
			`sidebar_current: "docs-postgresql-resource-postgresql_schema"`
			`description: \|-`
			`Creates and manages a schema within a PostgreSQL database.`
			`---`

			`# postgresql\_schema`

Fix a few small grammar nits. 2016-12-28 00:49:22 +01:00			The ``postgresql_schema`` resource creates and manages [schema
Remove old docs. Update docs and code to support the PUBLIC role. 2016-12-26 16:00:03 +01:00			`objects](https://www.postgresql.org/docs/current/static/ddl-schemas.html) within`
			`a PostgreSQL database.`
Add PostgreSQL schema support 2016-12-12 16:35:41 +01:00

			`## Usage`

			```
Remove old docs. Update docs and code to support the PUBLIC role. 2016-12-26 16:00:03 +01:00			`resource "postgresql_role" "app_www" {`
			`name = "app_www"`
			`}`

			`resource "postgresql_role" "app_dba" {`
			`name = "app_dba"`
			`}`

			`resource "postgresql_role" "app_releng" {`
			`name = "app_releng"`
			`}`

Add PostgreSQL schema support 2016-12-12 16:35:41 +01:00			`resource "postgresql_schema" "my_schema" {`
Add the `owner` attribute to the `postgresql_schema` resource. 2016-12-14 10:04:35 +01:00			`name = "my_schema"`
			`owner = "postgres"`
Remove old docs. Update docs and code to support the PUBLIC role. 2016-12-26 16:00:03 +01:00
			`policy {`
			`usage = true`
website/docs: Run `terraform fmt` on code examples (#12075) * docs/vsphere: Fix code block * docs: Convert `...` to `# ...` to allow `terraform fmt`ing * docs: Trim trailing whitespace * docs: First-pass run of `terraform fmt` on code examples 2017-02-18 23:48:50 +01:00			`role = "${postgresql_role.app_www.name}"`
Remove old docs. Update docs and code to support the PUBLIC role. 2016-12-26 16:00:03 +01:00			`}`

			`# app_releng can create new objects in the schema. This is the role that`
			`# migrations are executed as.`
			`policy {`
			`create = true`
website/docs: Run `terraform fmt` on code examples (#12075) * docs/vsphere: Fix code block * docs: Convert `...` to `# ...` to allow `terraform fmt`ing * docs: Trim trailing whitespace * docs: First-pass run of `terraform fmt` on code examples 2017-02-18 23:48:50 +01:00			`usage = true`
			`role = "${postgresql_role.app_releng.name}"`
Remove old docs. Update docs and code to support the PUBLIC role. 2016-12-26 16:00:03 +01:00			`}`

			`policy {`
			`create_with_grant = true`
website/docs: Run `terraform fmt` on code examples (#12075) * docs/vsphere: Fix code block * docs: Convert `...` to `# ...` to allow `terraform fmt`ing * docs: Trim trailing whitespace * docs: First-pass run of `terraform fmt` on code examples 2017-02-18 23:48:50 +01:00			`usage_with_grant = true`
			`role = "${postgresql_role.app_dba.name}"`
Remove old docs. Update docs and code to support the PUBLIC role. 2016-12-26 16:00:03 +01:00			`}`
Add PostgreSQL schema support 2016-12-12 16:35:41 +01:00			`}`
			```

			`## Argument Reference`

			* `name` - (Required) The name of the schema. Must be unique in the PostgreSQL
			`database instance where it is configured.`
Add the `owner` attribute to the `postgresql_schema` resource. 2016-12-14 10:04:35 +01:00			* `owner` - (Optional) The ROLE who owns the schema.
Remove old docs. Update docs and code to support the PUBLIC role. 2016-12-26 16:00:03 +01:00			* `policy` - (Optional) Can be specified multiple times for each policy. Each
			`policy block supports fields documented below.`

			The `policy` block supports:

			* `create` - (Optional) Should the specified ROLE have CREATE privileges to the specified SCHEMA.
			* `create_with_grant` - (Optional) Should the specified ROLE have CREATE privileges to the specified SCHEMA and the ability to GRANT the CREATE privilege to other ROLEs.
			* `role` - (Optional) The ROLE who is receiving the policy. If this value is empty or not specified it implies the policy is referring to the [`PUBLIC` role](https://www.postgresql.org/docs/current/static/sql-grant.html).
			* `usage` - (Optional) Should the specified ROLE have USAGE privileges to the specified SCHEMA.
			* `usage_with_grant` - (Optional) Should the specified ROLE have USAGE privileges to the specified SCHEMA and the ability to GRANT the USAGE privilege to other ROLEs.

			~> NOTE on `policy`: The permissions of a role specified in multiple policy blocks is cumulative. For example, if the same role is specified in two different `policy` each with different permissions (e.g. `create` and `usage_with_grant`, respectively), then the specified role with have both `create` and `usage_with_grant` privileges.
Add the `owner` attribute to the `postgresql_schema` resource. 2016-12-14 10:04:35 +01:00
Add PostgreSQL schema support 2016-12-12 16:35:41 +01:00			`## Import Example`

			`postgresql_schema` supports importing resources. Supposing the following
			`Terraform:`

			```
Add the `owner` attribute to the `postgresql_schema` resource. 2016-12-14 10:04:35 +01:00			`resource "postgresql_schema" "public" {`
website/docs: Run `terraform fmt` on code examples (#12075) * docs/vsphere: Fix code block * docs: Convert `...` to `# ...` to allow `terraform fmt`ing * docs: Trim trailing whitespace * docs: First-pass run of `terraform fmt` on code examples 2017-02-18 23:48:50 +01:00			`name = "public"`
Add PostgreSQL schema support 2016-12-12 16:35:41 +01:00			`}`

			`resource "postgresql_schema" "schema_foo" {`
Add the `owner` attribute to the `postgresql_schema` resource. 2016-12-14 10:04:35 +01:00			`name = "my_schema"`
			`owner = "postgres"`
Remove old docs. Update docs and code to support the PUBLIC role. 2016-12-26 16:00:03 +01:00
			`policy {`
			`usage = true`
			`}`
Add PostgreSQL schema support 2016-12-12 16:35:41 +01:00			`}`
			```

			It is possible to import a `postgresql_schema` resource with the following
			`command:`

			```
			`$ terraform import postgresql_schema.schema_foo my_schema`
			```

			Where `my_schema` is the name of the schema in the PostgreSQL database and
			`postgresql_schema.schema_foo` is the name of the resource whose state will be
			`populated as a result of the command.`