Quick Links

Re: [RFC] Interface of Row Level Security

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	Kohei KaiGai <kaigai(at)kaigai(dot)gr(dot)jp>
Cc:	Florian Pflug <fgp(at)phlo(dot)org>, Robert Haas <robertmhaas(at)gmail(dot)com>, PgHacker <pgsql-hackers(at)postgresql(dot)org>
Subject:	Re: [RFC] Interface of Row Level Security
Date:	2012-06-04 17:37:25
Message-ID:	16967.1338831445@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Kohei KaiGai <kaigai(at)kaigai(dot)gr(dot)jp> writes:
> Here is two problems around RLSBYPASS. The first is we have
> no idea to handle invalidation of prepared-statement when current
> user is switched, right now.

How is that specifically the fault of RLSBYPASS? *Any* of the schemes
you're proposing for inlined RLS checks will have problems with userID
switching.

My guess is we'd have to treat the effective userID as part of the
plancache lookup key to make it safe to inline anything related to RLS.

regards, tom lane

In response to

Re: [RFC] Interface of Row Level Security at 2012-06-04 16:38:05 from Kohei KaiGai

Responses

Re: [RFC] Interface of Row Level Security at 2012-06-04 19:41:53 from Kohei KaiGai

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Tom Lane	2012-06-04 18:09:44	Re: Btree or not btree? That is the question
Previous Message	Merlin Moncure	2012-06-04 16:44:55	Re: 9.2beta1, parallel queries, ReleasePredicateLocks, CheckForSerializableConflictIn in the oprofile