Skip site navigation (1) Skip section navigation (2)

Re: privilege shedding

From: "Kevin Grittner" <Kevin(dot)Grittner(at)wicourts(dot)gov>
To: "dkeeney" <dvkeeney(at)gmail(dot)com>,<pgsql-admin(at)postgresql(dot)org>
Subject: Re: privilege shedding
Date: 2008-08-21 14:10:16
Message-ID: 48AD30F8.EE98.0025.0@wicourts.gov (view raw or flat)
Thread:
Lists: pgsql-admin
>>> dkeeney <dvkeeney(at)gmail(dot)com> wrote: 
 
> Is there a way to non-reversibly shed privilige within a PostgreSQL
> session?
 
> I would like the role
> change to persist through the life of the session, without the
option
> of restoring the superuser role.
 
We could use this in certain circumstances.  How about SET
AUTHORIZATION ROLE as syntax?  (I was trying to find a reserved word
to use where LOCAL and SESSION are now allowed which would have the
right connotations.  I'm entirely happy with this, but it doesn't seem
too bad....)
 
-Kevin

In response to

pgsql-admin by date

Next:From: c kDate: 2008-08-21 19:48:51
Subject: Query performance difference
Previous:From: Tom LaneDate: 2008-08-21 14:02:09
Subject: Re: pg_log directory

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group