|From:||Christoph Heiss <christoph(dot)heiss(at)cybertec(dot)at>|
|To:||walther(at)technowledgy(dot)de, Laurenz Albe <laurenz(dot)albe(at)cybertec(dot)at>, pgsql-hackers(at)postgresql(dot)org|
|Cc:||Hans-Jürgen Schönig <hs(at)cybertec(dot)at>|
|Subject:||Re: [PATCH] Add reloption for views to enable RLS|
|Views:||Raw Message | Whole Thread | Download mbox | Resend email|
On 2/15/22 09:37, walther(at)technowledgy(dot)de wrote:
> Christoph Heiss:
>>> xxx_owner=true would be the default and xxx_owner=false could be set
>>> explicitly to get the behavior we are looking for in this patch?
>> I'm not sure if an option which is on by default would be best, IMHO.
>> I would rather have an off-by-default option, so that you explicitly
>> have to turn *on* that behavior rather than turning *off* the current.
> Just out of curiosity I asked myself whether there were any other
> boolean options that default to true in postgres - and there are plenty.
> ./configure options, client connection settings, server config options,
> etc - but also some SQL statements:
> - CREATE USER defaults to LOGIN
> - CREATE ROLE defaults to INHERIT
> - CREATE COLLATION defaults to DETERMINISTIC=true
> There's even reloptions, that do, e.g. vacuum_truncate.
Knowing that I happily drop my objection about that. :^)
> [..] The more I think about it, the more it becomes clear that
> really the current default behavior of "running the query as the view
> owner" is the special thing here, not the behavior you are introducing.
> If we were to start from scratch, it would be pretty obvious - to me -
> that run_as_owner=false would be the default, and the run_as_owner=true
> would need to be turned on explicitly. I'm thinking about "run_as_owner"
> as the better design and "defaults to true" as a backwards compatibility
Right, if we treat that as a kind of "backwards-compatible" feature,
having an reloption that is on by default makes sense.
I converted the option to run_as_owner=true|false in the attached v7.
It now definitely seems like the right way to move forward and getting
|Next Messagefirstname.lastname@example.org||2022-02-15 12:05:40||RE: [Proposal] Add foreign-server health checks infrastructure|
|Previous Message||Daniel Gustafsson||2022-02-15 11:52:00||Re: Ensure that STDERR is empty during connect_ok|