How to Install PostgreSQL on Ubuntu 16.04
Traducciones al EspañolEstamos traduciendo nuestros guías y tutoriales al Español. Es posible que usted esté viendo una traducción generada automáticamente. Estamos trabajando con traductores profesionales para verificar las traducciones de nuestro sitio web. Este proyecto es un trabajo en curso.
The PostgreSQL (also known as “Postgres”) relational database system is a powerful, scalable, and standards-compliant open-source database platform. This guide will help you install and configure PostgreSQL on your Ubuntu 16.04 LTS (Xenial Xerus) Linode.
Before You Begin
- Familiarize yourself with the Getting Started guide and complete the steps for setting the Linode’s hostname and timezone.
- Complete the sections of Securing Your Server guide to create a standard user account, harden SSH access, and remove unnecessary network services.
- Update the system:
sudo apt-get update && sudo apt-get upgrade
Note
This guide is written for a non-root user. Commands that require elevated privileges are prefixed with sudo. If you’re not familiar with the sudo command, visit the Users and Groups guide for more information.
Installing PostgreSQL On Ubuntu 16.04
Install PostgreSQL from the Ubuntu package repository:
sudo apt-get install postgresql postgresql-contrib
Configure PostgreSQL
Modify the postgres User
By default, PostgreSQL creates a Linux user named “postgres” to access the database software.
CautionThe postgres user should not be used for other purposes (e.g. connecting to other networks). Doing so presents a serious risk to the security of your databases.
Change the postgres user’s Linux password:
sudo passwd postgres
Issue the following commands to set a password for the postgres database user. Be sure to replace
newpassword
with a strong password and keep it in a secure place.su - postgres psql -d template1 -c "ALTER USER postgres WITH PASSWORD 'newpassword';"
NoteThis user is distinct from the postgres Linux user. The Linux user is used to access the database, and the PostgreSQL user is used to perform administrative tasks on the databases. The password set in this step will be used to connect to the database via the network. Peer authentication will be used by default for local connections. See the Secure Local PostgreSQL Access section for information about changing this setting.
Create a PostgreSQL Database
Run the commands in this section as the postgres Linux user.
Create a sample database called mytestdb:
createdb mytestdb
Connect to the test database:
psql mytestdb
.The output is similar to the following:
psql (9.5.25) Type "help" for help. mytestdb=#
This is the PostgreSQL client shell, in which you can issue SQL commands. To see a list of available commands, use the
\h
command. You may find more information on a specific command by adding it after\h
.Exit the PostgreSQL shell by entering the
\q
command.
Create Tables
This section contains examples that create a test database with an employee’s first and last name, assigning each a unique key. When creating the tables, you may specify as many parameters (columns) as you need and name them appropriately. Run the commands in this section from the PostgreSQL shell, opened in Step 2 of the Create a Database section.
Create a table called “employees” in the test database:
CREATE TABLE employees (employee_id int, first_name varchar, last_name varchar);
Insert a record into the table:
INSERT INTO employees VALUES (1, 'John', 'Doe');
View the contents of the “employees” table:
SELECT * FROM employees;
An output similar to the following appears:
employee_id | first_name | last_name -------------+------------+----------- 1 | John | Doe (1 row)
Merging Tables
It’s also possible to merge two database tables. Merge the “employees” table with another table “employees_1.”
Create a new table “employees_1” and view the contents of “employees_1”:
SELECT * FROM employees_1;
employee_id | first_name | last_name -------------+------------+----------- 1 | John | Doe 3 | Jax | Smith (2 rows)
Update the table “employees” with a new row and view contents of “employees”:
SELECT * FROM employees;
employee_id | first_name | last_name -------------+------------+----------- 1 | John | Doe 2 | Jane | Doe (2 rows)
Use the
union
command to merge both tables. To do so, run the following command:SELECT * FROM employees union SELECT * FROM employees_1
An output similar to the following appears:
employee_id | first_name | last_name -------------+------------+----------- 2 | Jane | Doe 3 | Jax | Smith 1 | John | Doe (3 rows)
To merge both tables by updating either of these tables, merge “employees_1” by updating data in the “employees” table:
INSERT INTO employees SELECT * FROM employees_1 where not exists(SELECT * FROM employees where employee_id=employees_1.employee_id and first_name=employees_1.first_name and last_name=employees_1.last_name);
An output similar to the following appears, when you try:
SELECT * FROM employees;
employee_id | first_name | last_name -------------+------------+----------- 1 | John | Doe 2 | Jane | Doe 3 | Jax | Smith
Creating New Tables with Selected Rows
To create a new table where you selectively wish to keep only rows with certain information, use the following syntax to create a new table:
CREATE TABLE < ADD YOUR NAME FOR NEW TABLE HERE > AS
SELECT * FROM < YOUR ORIGINAL TABLE > WHERE < YOUR COLUMN NAME > = < COLUMN VALUE>;
To illustrate this syntax, create a new table “employees_new” when “last_name” is equal to “Doe”. Run the syntax above on the “employees” table and find rows with “last_name” as “Doe” To do this, type the following command:
CREATE TABLE employees_new AS
SELECT * FROM employees WHERE last_name = 'Doe';
This creates a new table named “employees_new” with “last_name” as “Doe.” To check our new table, we can run the following command:
SELECT * FROM employees_new;
An output similar to the following appears:
employee_id | first_name | last_name
-------------+------------+-----------
1 | John | Doe
2 | Jane | Doe
Extracting Relevant Information
You can run a range of operations where we can extract relevant information from these databases. For example, to extract all rows from “employees_1” where someone’s last name is “Doe,” we can run the following command:
SELECT * FROM employees WHERE last_name = 'Doe';
An output similar to the following appears:
employee_id | first_name | last_name
-------------+------------+-----------
1 | John | Doe
2 | Jane | Doe
This is pretty straightforward. But let’s say if you are trying to find a record where you don’t remember the exact row value. In that case, you can use the partial match PostgreSQL operator “LIKE.” Let’s try to pull out complete row information where “last_name” in the “employees_1” table starts with an “S”. Run the following query on “employees_1” with a “LIKE” operator:
SELECT * FROM employees_1 WHERE last_name LIKE 'S%';
An output similar to the following appears: |
employee_id | first_name | last_name
-------------+------------+-----------
3 | Jax | Smith
The way you defined the “LIKE” operator was such that the query checked every “last_name” value to find values that started with an “S”. The trailing “%” in “last_name LIKE ‘S%'” says find all strings that start with an “S”.
Create PostgreSQL Roles
PostgreSQL grants database access via roles that are used to specify privileges. Roles can be understood as having a similar function to Linux “users.” In addition, roles may also be created as a set of other roles, similar to a Linux “group.” PostgreSQL roles apply globally, so you will not need to create the same role twice if you’d like to grant it access to more than one database on the same server.
The example commands in this section should be run as the postgres Linux user.
Add a new user role, then a password at the prompt:
createuser examplerole --pwprompt
If you need to delete a role, use the
dropuser
command in place ofcreateuser
.Connect to the database:
psql mytestdb
You’ll be connected as the postgres database user by default.
From the PostgreSQL shell, enter the following to grant all privileges on the table employees to the user examplerole:
GRANT ALL ON employees TO examplerole;
Exit the PostgreSQL shell by entering
\q
.
Secure Local PostgreSQL Access
PostgreSQL uses peer authentication by default. This means database connections will be granted to local system users that own or have privileges on the database being connected to. Such authentication is useful in cases where a particular system user will be running a local program (e.g. scripts, CGI/FastCGI processes owned by separate users, etc.), but for greater security, you may wish to require passwords to access your databases.
Commands in this section should be run as the postgres Linux user unless otherwise specified.
Edit the
/etc/postgresql/9.5/main/pg_hba.conf
file, under the # “local” is for Unix domain socket connections only header:- File: /etc/postgresql/9.5/main/pg_hba.conf
1 2
#"local" is for Unix domain socket connections only local all all peer
Replace “peer” with “md5” on this line to activate password authentication using an MD5 hash.
To enable these changes, we need to restart PostgreSQL. However, we did not grant the postgres user sudo privileges for security reasons. Return to the normal user shell:
exit
Restart PostgreSQL:
sudo service postgresql restart
Switch back to the postgres user:
su - postgres
As postgres, connect to the test database as the examplerole PostgreSQL user:
psql -U examplerole -W mytestdb
You are prompted to enter the password for the examplerole user and given psql shell access to the database. When using a database, you may check access privileges for each of its tables with the
\z
command.
Secure Remote PostgreSQL Access
PostgreSQL listens for connections on localhost and it is not advised to reconfigure it to listen on public IP addresses. If you would like to access your databases remotely using a graphical tool, please follow one of these guides:
- Securely Manage Remote PostgreSQL Servers with pgAdmin on Windows
- Securely Manage Remote PostgreSQL Servers with pgAdmin on Mac OS X
More Information
You may wish to consult the following resources for additional information on this topic. While these are provided in the hope that they will be useful, please note that we cannot vouch for the accuracy or timeliness of externally hosted materials.
This page was originally published on