Home > mailing lists

Re: NULL pg_database.datacl - Mailing list pgsql-general

From	Erik Wienhold
Subject	Re: NULL pg_database.datacl
Date	March 20, 2023 16:18:30
Msg-id	1479824139.962974.1679318310954@office.mailbox.org Whole thread Raw
In response to	Re: NULL pg_database.datacl (Dominique Devienne <ddevienne@gmail.com>)
Responses	Re: NULL pg_database.datacl (Dominique Devienne <ddevienne@gmail.com>)
List	pgsql-general

Tree view

> On 20/03/2023 13:50 CET Dominique Devienne <ddevienne@gmail.com> wrote:
>
> On Mon, Mar 20, 2023 at 1:18 PM Erik Wienhold <ewie@ewie.name> wrote:
> > > On 20/03/2023 11:52 CET Dominique Devienne <ddevienne@gmail.com> wrote:
> > > What does a NULL AclItem[] mean exactly?
> >
> >  It means that the object has default privileges (before any GRANT or REVOKE
> >  is executed). For databases this means full privileges for the database owner
> >  and the CONNECT and TEMPORARY privileges for PUBLIC. So any user can connect
> >  if allowed by pg_hba.conf.
> >
> >  https://www.postgresql.org/docs/current/ddl-priv.html
>
> Thanks Erik. But then, how come aclexplode() is not showing these
> default/implicit privileges?
>
> Is there a SQL function returning those per-type default provileges?
> That I could then coalesce() datacl with?

Use acldefault.  Pass in ownerId=0 to get the privileges for PUBLIC.

https://www.postgresql.org/docs/current/functions-info.html#FUNCTIONS-ACLITEM-FN-TABLE

--
Erik

pgsql-general by date:

From: Inzamam Shafiq
Date: 20 March 2023, 15:57:51
Subject: Oracle to PostgreSQL Migration

From: Dominique Devienne
Date: 20 March 2023, 16:41:34
Subject: Re: NULL pg_database.datacl

Re: NULL pg_database.datacl - Mailing list pgsql-general

Previous

Next