Re: Special role for subscriptions

From: Andrey Borodin <x4mmm(at)yandex-team(dot)ru>
To: Evgeniy Efimkin <efimkin(at)yandex-team(dot)ru>
Cc: Robert Haas <robertmhaas(at)gmail(dot)com>, Michael Paquier <michael(at)paquier(dot)xyz>, Jeff Davis <pgsql(at)j-davis(dot)com>, Stephen Frost <sfrost(at)snowman(dot)net>, "pgsql-hackers(at)postgresql(dot)org" <pgsql-hackers(at)postgresql(dot)org>, Дмитрий Сарафанников <dsarafan(at)yandex-team(dot)ru>, Владимир Бородин <root(at)simply(dot)name>
Subject: Re: Special role for subscriptions
Date: 2019-03-20 02:11:34
Views: Raw Message | Whole Thread | Download mbox | Resend email
Lists: pgsql-hackers


> 13 марта 2019 г., в 22:55, Evgeniy Efimkin <efimkin(at)yandex-team(dot)ru> написал(а):
> I've prepare patch with new system role, i'm not sure about name, called it "pg_subscription_users".
> In that patch we don't check permissions on target tables, i don't know, should we check it?

Currently, user with pg_subscription_users can create subscription into any system table, can't they?
We certainly need to change it to more secure way.

Best regards, Andrey Borodin.

In response to


Browse pgsql-hackers by date

  From Date Subject
Next Message Wu, Fei 2019-03-20 02:19:54 RE: Willing to fix a PQexec() in libpq module
Previous Message Michael Paquier 2019-03-20 02:07:31 Re: BUG #15668: Server crash in transformPartitionRangeBounds