Quick Links

Re: Schema grants for creating and dropping objects

From:	Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To:	marc(at)bloodnok(dot)com
Cc:	pgsql-hackers(at)postgresql(dot)org
Subject:	Re: Schema grants for creating and dropping objects
Date:	2011-10-09 15:58:59
Message-ID:	3969.1318175939@sss.pgh.pa.us
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

Marc Munro <marc(at)bloodnok(dot)com> writes:
> It seems that in order to create an object in a given schema, I must
> have been granted create privilege on the schema. But in order to drop
> that object I require usage privilege.

> This means that with the right privilege settings I can create objects
> that I cannot subsequently drop, or can drop an object that I cannot
> recreate.

Yeah. So? You can get similar effects with read-only or write-only
directories in Unix filesystems. Don't see why you find this surprising.

regards, tom lane

In response to

Schema grants for creating and dropping objects at 2011-10-09 00:41:16 from Marc Munro

Responses

Re: Schema grants for creating and dropping objects at 2011-10-09 19:03:38 from Marc Munro

Browse pgsql-hackers by date

	From	Date	Subject
Next Message	Heikki Linnakangas	2011-10-09 16:01:07	Re: REVIEW: Optimizing box_penalty
Previous Message	Tom Lane	2011-10-09 15:56:56	Re: libpq, PQdescribePrepared -> PQftype, PQfmod, no PQnullable