| From: | Adrian Klaver <adrian(dot)klaver(at)aklaver(dot)com> |
|---|---|
| To: | Ayush Vatsa <ayushvatsa1810(at)gmail(dot)com>, pgsql-general(at)lists(dot)postgresql(dot)org |
| Subject: | Re: Clarification on REVOKE ALL ON FUNCTION – Are there any privileges apart from EXECUTE? |
| Date: | 2025-05-18 19:21:33 |
| Message-ID: | 008d95bc-591b-458e-914c-9f402f5157ec@aklaver.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
On 5/18/25 12:17, Ayush Vatsa wrote:
> Hi Postgres Community,
> I had a quick question regarding function-level privileges in PostgreSQL.
> We know that |REVOKE EXECUTE ON FUNCTION ...| removes the ability to
> call the function. But when we do:
> REVOKE ALL ON FUNCTION my_func(args) FROM some_role;
>
> does this revoke anything other than |EXECUTE|? Are there any other
> privileges that apply to functions which get revoked via |REVOKE ALL|?
> > I looked through the documentation but couldn’t find a definitive answer
> on whether |ALL| includes more than just |EXECUTE| in the context of
> functions.
See here:
https://www.postgresql.org/docs/current/ddl-priv.html
Table 5.1. ACL Privilege Abbreviations
This is the best way to see what privileges apply to what objects.
>
> Would appreciate any insights or pointers.
>
> ---------------
> Regards,
> Ayush
>
--
Adrian Klaver
adrian(dot)klaver(at)aklaver(dot)com
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Adrian Klaver | 2025-05-18 19:29:05 | Re: pg_stat_statements has duplicate entries for the same query & queryId |
| Previous Message | Jevon Cowell | 2025-05-18 19:20:07 | pg_stat_statements has duplicate entries for the same query & queryId |