Re: Delete cascade trigger runs security definer

From: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To: Craig Ringer <craig(at)postnewspapers(dot)com(dot)au>
Cc: pgsql-general(at)postgresql(dot)org
Subject: Re: Delete cascade trigger runs security definer
Date: 2008-11-14 18:19:36
Message-ID: 15503.1226686776@sss.pgh.pa.us
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-general

Craig Ringer <craig(at)postnewspapers(dot)com(dot)au> writes:
> Is the search_path reset in some way that's not visible in
> pg_catalog.pg_settings when the ON DELETE CASCADE is issued?

No, I don't believe so. Perhaps your test case was simply fooled by
plan caching within the trigger function?

In general the solution to this type of problem is to attach a
search_path setting to any function that might be invoked via untrusted
users.

regards, tom lane

In response to

Browse pgsql-general by date

  From Date Subject
Next Message Raj Mathur 2008-11-15 04:06:34 Re: Enc: Help to replace caracter
Previous Message Craig Ringer 2008-11-14 18:05:24 Re: Delete cascade trigger runs security definer