| From: | Jeevan Chalke <jeevan(dot)chalke(at)enterprisedb(dot)com> |
|---|---|
| To: | Stephen Frost <sfrost(at)snowman(dot)net> |
| Cc: | Alvaro Herrera <alvherre(at)2ndquadrant(dot)com>, Robert Haas <robertmhaas(at)gmail(dot)com>, Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, Thom Brown <thom(at)linux(dot)com>, "pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Add support for restrictive RLS policies |
| Date: | 2016-09-29 10:18:09 |
| Message-ID: | CAM2+6=Vn0GT0Nr3Ps3iJC9+1WNi=aYtqq_KC_Agf03yaW2gsbA@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Hi Stephen,
> 4. It will be good if we have an example for this in section
> > "5.7. Row Security Policies"
>
> I haven't added one yet, but will plan to do so.
>
> I think you are going to add this in this patch itself, right?
I have reviewed your latest patch and it fixes almost all my review
comments.
Also I am agree with your responses for couple of comments like response on
ALTER POLICY and tab completion. No issues with that.
However in documentation, PERMISSIVE and RESTRICTIVE are actually literals
and not parameters as such. Also can we combine these two options into one
like below (similar to how we document CASCADE and RESTRICT for DROP
POLICY):
<varlistentry>
<term><literal>PERMISSIVE</literal></term>
<term><literal>RESTRICTIVE</literal></term>
<listitem>
<para>
... explain PERMISSIVE ...
</para>
<para>
... explain RESTRICTIVE ...
</para>
</listitem>
</varlistentry>
Apart from this changes look excellent to me.
Thanks
--
Jeevan B Chalke
Principal Software Engineer, Product Development
EnterpriseDB Corporation
The Enterprise PostgreSQL Company
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Magnus Hagander | 2016-09-29 10:44:48 | Re: pg_basebackup stream xlog to tar |
| Previous Message | Heikki Linnakangas | 2016-09-29 10:17:53 | Re: less expensive pg_buffercache on big shmem |