Simon Riggs <simon@2ndQuadrant.com> writes:
> On Tue, 2009-01-27 at 13:57 -0500, Joshua Brindle wrote:
>> Josh Berkus wrote:
>>> Hmmm. Why try to hide individual rows in tables then? That would seem
>>> not in keeping with the filesystem policies.
>>
>> Because rows have data in them. It is analogous to not allowing the contents of
>> the file to be visible. However, the primary key is still known to exist through
>> various means, which is more analogous to the filename.
> Since most keys are likely to be non-meaningful IDs, its not going to
> help you much.
Even more to the point: if the expectation is that you can hide a row's
data payload but not its primary key, you can accomplish that with
column-level permissions, without having to get into any non-standard
or even faintly surprising SQL behavior,
regards, tom lane
