Skip site navigation (1) Skip section navigation (2)

Re: patch for type privileges

From: Peter Eisentraut <peter_e(at)gmx(dot)net>
To: pgsql-hackers <pgsql-hackers(at)postgresql(dot)org>
Subject: Re: patch for type privileges
Date: 2011-11-15 20:50:18
Message-ID: 1321390218.18767.12.camel@vanquo.pezone.net (view raw or flat)
Thread:
Lists: pgsql-hackers
Patch attached.

On tis, 2011-11-15 at 22:23 +0200, Peter Eisentraut wrote:
> Here is the patch to implement type privileges that I alluded to
> earlier.  To recall, this is mainly so that owners can prevent others
> from using their types because that would in some cases prevent owners
> from changing the types.  That would effectively be a denial of service.
> 
> These are the interfaces that this patch implements:
> 
> - GRANT USAGE ON DOMAIN
> - GRANT USAGE ON TYPE
> - default privileges for types
> - analogous REVOKEs
> - display privileges in psql \dT+
> - privilege checks in various DDL commands (CREATE FUNCTION, CREATE
> TABLE, etc.)
> - various information schema views adjusted
> - has_type_privilege function family
> 
> The basics here are mainly informed by the SQL standard.  One thing from
> there I did not implement is checking for permission of a type used in
> CAST (foo AS type).  This would be doable but relatively complicated,
> and in practice someone how is not supposed to be able to use the type
> wouldn't be able to create the cast or the underlying cast function
> anyway for lack of access to the type.
> 
> As elsewhere in the system, the usage of TYPE and DOMAIN is partially
> overlapping and partially not.  You can use GRANT ON TYPE on a domain
> but not GRANT ON DOMAIN on a type (compare CREATE/DROP).  We only
> support one common set of default privileges for types and domains.  I
> feel that's enough, but it could be adjusted.
> 
> Open items:
> 
> - GRANT TO ALL TYPES -- haven't gotten to that yet, but could be added
> 
> A reviewer should of course particularly check if there are any holes in
> the privilege protection that this patch purports to afford.




Attachment: typacl.patch
Description: text/x-patch (125.2 KB)

In response to

Responses

pgsql-hackers by date

Next:From: Kevin GrittnerDate: 2011-11-15 20:59:14
Subject: Re: ISN was: Core Extensions relocation
Previous:From: Kevin GrittnerDate: 2011-11-15 20:47:54
Subject: Re: FlexLocks

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group