Home > mailing lists

Re: Grantor name gets lost when grantor role dropped - Mailing list pgsql-bugs

From	Alvaro Herrera
Subject	Re: Grantor name gets lost when grantor role dropped
Date	April 17, 2007 02:44:42
Msg-id	20070417024430.GF10557@alvh.no-ip.org Whole thread Raw
In response to	Grantor name gets lost when grantor role dropped (Jeff Davis <pgsql@j-davis.com>)
Responses	Re: Grantor name gets lost when grantor role dropped
List	pgsql-bugs

Tree view

Jeff Davis wrote:

> CREATE ROLE test_role
>   NOSUPERUSER INHERIT NOCREATEDB NOCREATEROLE;
>
> CREATE ROLE invalid_grantor
>   SUPERUSER INHERIT NOCREATEDB NOCREATEROLE;
>
> SET ROLE invalid_grantor;
> GRANT "postgres" TO "test_role";
> SET ROLE postgres;
>
> select * from pg_roles;
>
> select pg_auth_members.*, ur.rolname, gr.rolname from pg_auth_members LEFT JOIN pg_roles ur ON roleid = oid
> LEFT JOIN pg_roles gr ON gr.oid = grantor;
>
> DROP ROLE invalid_grantor;
>
> select pg_auth_members.*, ur.rolname, gr.rolname from pg_auth_members LEFT JOIN pg_roles ur ON roleid = oid
> LEFT JOIN pg_roles gr ON gr.oid = grantor;
>
> DROP ROLE test_role;

The problem here is that we allowed the drop of invalid_grantor.  We are
missing a shared dependency on it.

--
Alvaro Herrera                                http://www.CommandPrompt.com/
The PostgreSQL Company - Command Prompt, Inc.

pgsql-bugs by date:

From: Jeff Davis
Date: 17 April 2007, 01:59:57
Subject: Grantor name gets lost when grantor role dropped

From: Russell Smith
Date: 17 April 2007, 08:04:54
Subject: Re: Grantor name gets lost when grantor role dropped

Re: Grantor name gets lost when grantor role dropped - Mailing list pgsql-bugs

Previous

Next