Home > mailing lists

Re: Add a new BGWORKER_BYPASS_ROLELOGINCHECK flag - Mailing list pgsql-hackers

From	Drouvot, Bertrand
Subject	Re: Add a new BGWORKER_BYPASS_ROLELOGINCHECK flag
Date	October 6, 2023 09:48:32
Msg-id	06124373-5fdd-4925-9424-9d036d481f3b@gmail.com Whole thread Raw
In response to	Re: Add a new BGWORKER_BYPASS_ROLELOGINCHECK flag (Bharath Rupireddy <bharath.rupireddyforpostgres@gmail.com>)
Responses	Re: Add a new BGWORKER_BYPASS_ROLELOGINCHECK flag
List	pgsql-hackers

Tree view

Hi,

On 10/5/23 6:23 PM, Bharath Rupireddy wrote:
> On Thu, Oct 5, 2023 at 9:32 PM Drouvot, Bertrand
> <bertranddrouvot.pg@gmail.com> wrote:
>>
>> +  CREATE ROLE nologrole with nologin;
>> +  GRANT CREATE ON DATABASE mydb TO nologrole;
> 
> A few nit-picks:
> 
> 1. s/with/WITH
> 2. s/nologin/NOLOGIN

done in v8 attached.

> 3. +   is specified as <varname>flags</varname> it is possible to
> bypass the login check to connect to databases.
> How about "it is possible to bypass the login check for the role used
> to connect to databases."?
> 

"for the role used" sounds implicit to me but I don't have a strong opinion
about it so re-worded as per your proposal in v8.

Regards,

-- 
Bertrand Drouvot
PostgreSQL Contributors Team
RDS Open Source Databases
Amazon Web Services: https://aws.amazon.com

Attachment

v8-0001-Allow-background-workers-to-bypass-login-check.patch

pgsql-hackers by date:

From: Peter Smith
Date: 06 October 2023, 09:44:32
Subject: PGDOCS - add more links in the pub/sub reference pages

From: Michael Paquier
Date: 06 October 2023, 09:50:30
Subject: Re: Use FD_CLOEXEC on ListenSockets (was Re: Refactoring backend fork+exec code)

Re: Add a new BGWORKER_BYPASS_ROLELOGINCHECK flag - Mailing list pgsql-hackers

Attachment

Previous

Next