Is it possible to run a Canton participant such that the DB user doesn’t have permission to alter the schema?
In the PostgreSQL v1 driver a feature was implemented to start the driver in “admin setup mode”. It would use a db user with elevated permission to create the schema (or migrate it if it’s a version upgrade) and close after finishing.
Then you would start the driver in normal operation mode with a DB user without elevated permission.
Is something similar available for a Canton Participant?
The background of the question is that OpSec prohibits an application to run using a DB user with permissions to manipulate the Schema.