Hi we are using postgres for our web app. The default installation you do has a super user and password. We can use that on our admin tools for back end admin, but wondering how tight the security initially is with users/database access, and any tips you have for us making our database for app secure.
For example I see by default there are users called postgres, public, pythonanywhere_helper, and super. Is it ok to leave each of these users as is?
My thought is we'll create the database for our app and then create a specific user that has all privileges on that database. Would that mean that only that new user and the super user have full access to this app's database?
Thanks