Home > mailing lists

Re: restrict pg_stat_ssl to superuser? - Mailing list pgsql-hackers

From	Michael Paquier
Subject	Re: restrict pg_stat_ssl to superuser?
Date	February 12, 2019 09:40:07
Msg-id	20190212064007.GN1475@paquier.xyz Whole thread Raw
In response to	restrict pg_stat_ssl to superuser? (Peter Eisentraut <peter.eisentraut@2ndquadrant.com>)
Responses	Re: restrict pg_stat_ssl to superuser? (Peter Eisentraut <peter.eisentraut@2ndquadrant.com>)
List	pgsql-hackers

Tree view

On Thu, Feb 07, 2019 at 09:30:38AM +0100, Peter Eisentraut wrote:
> If so, is there anything in that view that should be made available to
> non-superusers?  If not, then we could perhaps do this via a simple
> permission change instead of going the route of blanking out individual
> columns.

Hm.  It looks sensible to move to a per-permission approach for that
view.  Now, pg_stat_get_activity() is not really actually restricted,
and would still return the information on direct calls, so the idea
would be to split the SSL-related data into its own function?
--
Michael

Attachment

signature.asc

pgsql-hackers by date:

From: "Tsunakawa, Takayuki"
Date: 12 February 2019, 09:33:00
Subject: Speed up transaction completion faster after many relations areaccessed in a transaction

From: Amit Langote
Date: 12 February 2019, 09:41:15
Subject: Re: speeding up planning with partitions

Re: restrict pg_stat_ssl to superuser? - Mailing list pgsql-hackers

Attachment

Previous

Next