KaiGai Kohei <kaigai(at)ak(dot)jp(dot)nec(dot)com> writes:
> When FindConversion() is called, it also checks current user's ACL_EXECUTE
> privilege on the conproc of the fetched conversion.
> Why this check is applied on FindConversion(), instead of FindDefaultConversion()?
Does seem pretty inconsistent, doesn't it?
The original idea may have been to provide a substitute for a USAGE
ACL check on conversions, in which case it's not totally insane: if
you make a conversion default then you're implicitly granting it to
public. But there's no documentation about this.
Offhand I see no really good reason to have a usage check on
conversions, and would be happy with removing this one. The function
permission check at CREATE CONVERSION time ought to be sufficient.
regards, tom lane
In response to
pgsql-hackers by date
|Next:||From: Chander Ganesan||Date: 2009-08-19 18:39:39|
|Subject: Re: We should Axe /contrib/start-scripts|
|Previous:||From: Tom Lane||Date: 2009-08-19 18:22:39|
|Subject: Re: Idea about estimating selectivity for single-column expressions |