| From: | Florian Pflug <fgp(at)phlo(dot)org> |
|---|---|
| To: | Magnus Hagander <magnus(at)hagander(dot)net> |
| Cc: | Stephen Frost <sfrost(at)snowman(dot)net>, Robert Haas <robertmhaas(at)gmail(dot)com>, Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Streaming replication as a separate permissions |
| Date: | 2010-12-27 11:42:19 |
| Message-ID: | F69E649F-3D10-4FEE-B5CF-353489234E93@phlo.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Dec27, 2010, at 12:15 , Magnus Hagander wrote:
> Actually, having implemented that and tested it, I realize that's a
> pretty bad idea. For one thing, it broke my own pg_streamrecv program,
> since it requires the ability to connect to the master and select a
> pg_current_xlog_location().
I'm starting to think what we really want here is a kind of read-only
superuser. WITH REPLICATION already essentially gives you read-only
access to the whole database. Thus, allowing WITH REPLICATION roles
read-only access to everything on the SQL level also doesn't really
extend their abilities, it merely makes getting some information faster
and more convenient. It'd also make WITH REPLICATION the perfect fit
for pg_dump-style backups, if you're uneasy about using a superuser
for that.
best regards,
Florian Pflug
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Simon Riggs | 2010-12-27 11:42:34 | Reduce lock levels for ADD and DROP COLUMN |
| Previous Message | Pavel Stehule | 2010-12-27 11:15:45 | Re: MULTISET patch |