| From: | Laurenz Albe <laurenz(dot)albe(at)cybertec(dot)at> |
|---|---|
| To: | pgsql-hackers(at)postgresql(dot)org |
| Subject: | Omission in GRANT documentation |
| Date: | 2017-10-10 07:34:55 |
| Message-ID: | 1507620895.4152.1.camel@cybertec.at |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
grant.sgml says that
the default privileges granted to PUBLIC are as follows: CONNECT and
CREATE TEMP TABLE for databases; EXECUTE privilege for functions;
and USAGE privilege for languages.
But types also have the USAGE privilege for PUBLIC by default:
test=> CREATE TYPE bug_status AS ENUM ('new', 'open', 'closed');
CREATE TYPE
test=> GRANT USAGE ON TYPE bug_status TO duff;
GRANT
test=> REVOKE USAGE ON TYPE bug_status FROM duff;
REVOKE
test=> \dT+ bug_status
List of data types
Schema | Name | ... | Owner | Access privileges | ...
--------+------------+-----+---------+-------------------+-----
public | bug_status | | laurenz | =U/laurenz +|
| | | | laurenz=U/laurenz |
(1 row)
Hence I propose the attached documentation patch.
Yours,
Laurenz Albe
| Attachment | Content-Type | Size |
|---|---|---|
| 0001-Fix-documentation-of-default-privileges-for-types.patch | text/x-patch | 1.2 KB |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Masahiko Sawada | 2017-10-10 07:53:02 | Re: [BUGS] 10.0: Logical replication doesn't execute BEFORE UPDATE OF <columns> trigger |
| Previous Message | Jeevan Chalke | 2017-10-10 06:07:57 | Re: Partition-wise aggregation/grouping |