Robert Haas <robertmhaas(at)gmail(dot)com> writes:
> On the other hand, the REPLICATION privilege is denying you the right to
> perform an operation *even though you already are authenticated as a
> superuser*. I don't think there's anywhere else in the system where
> we allow a privilege to non-super-users but deny that same privilege
> to super-users, and I don't think we should be starting now.
You might want to reflect on rolcatupdate a bit before asserting that
there are no cases where privileges are ever denied to superusers.
However, that precedent would suggest that the default should be to
grant the replication bit to superusers.
regards, tom lane
In response to
pgsql-hackers by date
|Next:||From: Robert Haas||Date: 2011-01-03 16:21:15|
|Subject: Re: Re: new patch of MERGE (merge_204) & a question about
|Previous:||From: Magnus Hagander||Date: 2011-01-03 16:19:25|
|Subject: Re: Scanning pg_tablespace from walsender|