Home > mailing lists

Re: BUG #17626: Permission denied errors should list role as well as user - Mailing list pgsql-bugs

From	Tom Lane
Subject	Re: BUG #17626: Permission denied errors should list role as well as user
Date	October 3, 2022 18:53:31
Msg-id	1515820.1664812411@sss.pgh.pa.us Whole thread Raw
In response to	Re: BUG #17626: Permission denied errors should list role as well as user ("David G. Johnston" <david.g.johnston@gmail.com>)
Responses	Re: BUG #17626: Permission denied errors should list role as well as user Re: BUG #17626: Permission denied errors should list role as well as user
List	pgsql-bugs

Tree view

"David G. Johnston" <david.g.johnston@gmail.com> writes:
> Basically, a permission check requires two things and the complaint is that
> only one of those things is mentioned in the error message.

No, the complaint is that the wrong thing is shown --- but I don't
know what's showing it; aclcheck_error() certainly doesn't.

There's a separate conversation to be had perhaps about whether
aclcheck_error's standard message *should* include the role name
whose permissions were checked.  I have a vague feeling that that
omission was intentional, but it was so long ago that I don't
recall for sure.  It seems like something that'd be good to show
in more complicated situations with views, security definer
functions, etc.

            regards, tom lane

pgsql-bugs by date:

From: "David G. Johnston"
Date: 03 October 2022, 18:40:05
Subject: Re: BUG #17626: Permission denied errors should list role as well as user

From: Loren Siebert
Date: 03 October 2022, 20:12:44
Subject: Re: BUG #17626: Permission denied errors should list role as well as user

Re: BUG #17626: Permission denied errors should list role as well as user - Mailing list pgsql-bugs

Previous

Next