Quick Links

Function script generator lacks revoke from public for ACL {postgres=X/postgres} -functions

From:	"Knut P(dot) Lehre" <knutpl(at)broadpark(dot)no>
To:	pgadmin-hackers(at)postgresql(dot)org
Subject:	Function script generator lacks revoke from public for ACL {postgres=X/postgres} -functions
Date:	2011-04-08 18:07:14
Message-ID:	734081943df65.4d9f6af2@broadpark.no
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgadmin-hackers

<div style="font-family: 'Times New Roman'; font-size: 16px;"><span _moz_dirty="">It is dangerous when working with security definer functions that the pgAdmin3 script creator does
not include a "revoke from public" for functions with e.g. ACL
postgres=X/postgres (at least in version 1.10.1). If you use this script
to copy a function definition, then you will get public execute granted
to that function.<br _moz_dirty="" />pg_dump adds a revoke from public in this case. Is
this missing revoke in pgAdmin3 intentional or was it forgotten?<br _moz_dirty="" /><br _moz_dirty="" />KP Lehre<br _moz_dirty="" /><br _moz_dirty="" /></span></div>

Attachment	Content-Type	Size
unknown_filename	text/html	659 bytes

Responses

Re: Function script generator lacks revoke from public for ACL {postgres=X/postgres} -functions at 2011-04-08 20:18:43 from Guillaume Lelarge

Browse pgadmin-hackers by date

	From	Date	Subject
Next Message	Dave Page	2011-04-08 18:28:01	Re: Rework on the dialogs UI
Previous Message	Guillaume Lelarge	2011-04-08 13:38:34	Re: Rework on the dialogs UI