Quick Links

Non-superuser event trigger owners

From:	Mark Dilger <mark(dot)dilger(at)enterprisedb(dot)com>
To:	PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org>
Cc:	Andrew Dunstan <andrew(at)dunslane(dot)net>
Subject:	Non-superuser event trigger owners
Date:	2021-10-20 18:40:32
Message-ID:	914FF898-5AC4-4E02-8A05-3876087007FB@enterprisedb.com
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-hackers

These patches have been split off the now deprecated monolithic "Delegating superuser tasks to new security roles" thread at [1].

The purpose of these patches is to allow ordinary users to create and own event triggers without introducing escalation attack vectors:

Attachment	Content-Type	Size
v1-0001-Allow-event-trigger-ownership-by-non-superusers.patch	application/octet-stream	5.0 KB
v1-0002-Allow-regular-users-to-create-event-triggers.patch	application/octet-stream	9.6 KB

	From	Date	Subject
Next Message	Mark Dilger	2021-10-20 18:40:35	CREATEROLE and role ownership hierarchies
Previous Message	Mark Dilger	2021-10-20 18:40:10	New privileged roles which can SET and ALTER SYSTEM SET