Home > mailing lists

Re: Proposal: two new role attributes and/or capabilities? - Mailing list pgsql-hackers

From	Stephen Frost
Subject	Re: Proposal: two new role attributes and/or capabilities?
Date	December 23, 2014 22:05:19
Msg-id	20141223190514.GO3062@tamriel.snowman.net Whole thread Raw
In response to	Re: Proposal: two new role attributes and/or capabilities? (José Luis Tallón <jltallon@adv-solutions.net>)
List	pgsql-hackers

Tree view

* José Luis Tallón (jltallon@adv-solutions.net) wrote:
> On 12/23/2014 07:01 PM, David G Johnston wrote:
> >[snip]
> >So you want to say:
> >
> >GRANT IMPERSONATE TO bouncer; --covers the "ALL" requirement
> >
> >instead of
> >
> >GRANT victim1 TO bouncer;
> >GRANT victim2 TO bouncer;
> >etc...
> >
> >-- these would still be used to cover the "limited users" requirement
> >?
>
> |GRANT IMPERSONATE ON actual_role TO login_role|
>
>     would actually get us closer to how some other databases do, now
> that I think of it. This could be just some syntactic sugar.
>     Might definitively ease migrations, if nothing else.

Uh, how is this different from GRANT actual_role TO login_role, with use
of noinherit..?
THanks,
    Stephen

pgsql-hackers by date:

From: Stephen Frost
Date: 23 December 2014, 22:04:29
Subject: Re: Proposal: two new role attributes and/or capabilities?

From: Andres Freund
Date: 23 December 2014, 22:11:38
Subject: Re: Wait free LW_SHARED acquisition - v0.10

Re: Proposal: two new role attributes and/or capabilities? - Mailing list pgsql-hackers

Previous

Next