| From: | Murat Tasan <murat(dot)tasan(at)cwru(dot)edu> |
|---|---|
| To: | pgsql-novice(at)postgresql(dot)org |
| Subject: | function privileges |
| Date: | 2006-02-02 22:45:16 |
| Message-ID: | 4D316E9D-7453-467F-812C-DD19B30F0D73@cwru.edu |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-novice |
Quick question on function privileges: what exactly does GRANT/REVOKE
ON FUNCTION fun_name() actually do?
I've tried a few scenarios out, and cannot figure out when this is
used. Let us say I have a function F(int4) that does some selection
on a table T.
If user A comes along and has no SELECT privileges on T, but has
EXECUTE privileges on F, A is not permitted to run the function, with
an error stating access to T is needed.
Now, if user B comes along and has SELECT privileges on T, but not
EXECUTE privileges on F, B is permitted to run the function.
I'm sure I'm missing some scenario where privileges on F make a
difference, but I can't find any info in the docs on this. Can
anyone help me out understanding this?
Thanks!
Murat
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Michael Fuhr | 2006-02-03 04:49:20 | Re: function privileges |
| Previous Message | Darren R | 2006-02-02 18:59:17 | Re: pg_dump - sort data? |