Re: Privileges and inheritance - Mailing list pgsql-hackers

From Peter Eisentraut
Subject Re: Privileges and inheritance
Date
Msg-id 1254686250.13655.7.camel@vanquo.pezone.net
Whole thread Raw
In response to Re: Privileges and inheritance  (Josh Berkus <josh@agliodbs.com>)
Responses Re: Privileges and inheritance
List pgsql-hackers
On Sun, 2009-10-04 at 11:56 -0700, Josh Berkus wrote:
> Except ... I can imagine a multi-tenant setup where certain ROLEs only
> have permissions on some child relations, but not others.  So we'd want
> to still enable a permissions check on a child when the child is called
> directly rather than through the parent.

Well, when you access the child, it doesn't care whether it has a
parent.  So this is equivalent to checking permissions before accessing
a table, period.  I think we'll keep that. ;-)

> And we'd want to hammer this to death looking for ways it can be a
> security exploit. Like, could you make a table into the parent of an
> existing table you didn't have permissions on?

I don't think so, but you're free to hammer. ;-)




pgsql-hackers by date:

Previous
From: David Fetter
Date:
Subject: Re: Rules: A Modest Proposal
Next
From: Robert Haas
Date:
Subject: Re: Rules: A Modest Proposal