Home > mailing lists

change to session_user in a security definer function - Mailing list pgsql-novice

From	Jean-Yves F. Barbier
Subject	change to session_user in a security definer function
Date	June 22, 2011 13:54:07
Msg-id	20110622155356.65762258@anubis.defcon1 Whole thread Raw
List	pgsql-novice

Tree view

Hi list,

I wonder if it is possible to do so?

eg: security definer function checks session_user privileges against a table
(or whatever) and call another function to create a prepared statement AS if
it was session_user making that call.

JY
--
One does not thank logic.
        -- Sarek, "Journey to Babel", stardate 3842.4

pgsql-novice by date:

From: "Jean-Yves F. Barbier"
Date: 22 June 2011, 13:49:23
Subject: to escape or not to

From: Merlin Moncure
Date: 22 June 2011, 14:04:15
Subject: Re: to escape or not to

change to session_user in a security definer function - Mailing list pgsql-novice

Previous

Next