From: | Noah Misch <noah(at)leadboat(dot)com> |
---|---|
To: | pgsql-hackers(at)postgresql(dot)org |
Subject: | Dump public schema ownership & seclabels |
Date: | 2020-12-29 13:49:24 |
Message-ID: | 20201229134924.GA1431748@rfd.leadboat.com |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-hackers |
https://postgr.es/m/20201031163518.GB4039133@rfd.leadboat.com gave $SUBJECT as
one of the constituent projects for changing the public schema default ACL.
This ended up being simple. Attached. I chose to omit the "ALTER SCHEMA
public OWNER TO" when the owner is the bootstrap superuser, like how we skip
acl GRANT/REVOKE when the ACL matches the one recorded in pg_init_privs. I
waffled on that; would it be better to make the OWNER TO unconditional?
Like ownership, we've not been dumping security labels on the public schema.
The way I fixed ownership fixed security labels implicitly. If anyone thinks
I should unbundle these two, let me know.
All this is arguably a fix for an ancient bug. Some sites may need to
compensate for the behavior change, so I plan not to back-patch.
Thanks,
nm
Attachment | Content-Type | Size |
---|---|---|
public-owner-dump-v1.patch | text/plain | 7.7 KB |
From | Date | Subject | |
---|---|---|---|
Next Message | Tom Lane | 2020-12-29 14:36:21 | Re: doc review for v14 |
Previous Message | Hou, Zhijie | 2020-12-29 11:20:47 | RE: [POC] Fast COPY FROM command for the table with foreign partitions |