| From: | Robert Haas <robertmhaas(at)gmail(dot)com> |
|---|---|
| To: | Kohei KaiGai <kaigai(at)kaigai(dot)gr(dot)jp> |
| Cc: | PgHacker <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: [sepgsql 2/3] Add db_schema:search permission checks |
| Date: | 2013-04-01 19:41:14 |
| Message-ID: | CA+TgmoY0-TG2xp7FBAQBLATdkJWd+B995YtLV_2aFEJ1oa=mbw@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Tue, Jan 15, 2013 at 3:28 PM, Kohei KaiGai <kaigai(at)kaigai(dot)gr(dot)jp> wrote:
> This patch adds sepgsql support for permission checks equivalent
> to the existing SCHEMA USE privilege.
>
> This feature is constructed on new OAT_SCHEMA_SEARCH event
> type being invoked around pg_namespace_aclcheck().
> So, its expected behavior also follows the behavior of existing
> permissions; unprivileged schema is ignored from the search path,
> or raise an error if object name is fully qualified.
>
> This patch needs src/backend/catalog/objectaccess.c is existing,
> so please apply this patch on top of this feature.
> https://commitfest.postgresql.org/action/patch_view?id=1003
KaiGai,
Could you please rebase this patch?
Thanks,
--
Robert Haas
EnterpriseDB: http://www.enterprisedb.com
The Enterprise PostgreSQL Company
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bruce Momjian | 2013-04-01 20:32:49 | Re: Page replacement algorithm in buffer cache |
| Previous Message | Pavel Stehule | 2013-04-01 19:24:15 | plpgsql_check_function - plan for 9.4 |