Re: [HACKERS] Re: Bug#21681: postgresql: Doesn't allow granting to www-data - Mailing list pgsql-hackers

From Thomas G. Lockhart
Subject Re: [HACKERS] Re: Bug#21681: postgresql: Doesn't allow granting to www-data
Date
Msg-id 3546976D.509CD51@alumni.caltech.edu
Whole thread Raw
In response to Re: [HACKERS] Re: Bug#21681: postgresql: Doesn't allow granting to www-data  ("Oliver Elphick" <olly@lfix.co.uk>)
Responses Re: [HACKERS] Re: Bug#21681: postgresql: Doesn't allow granting to
List pgsql-hackers
More info on the GRANT problem with user names containing a minus sign:

It turns out that "+-=" are used inside an ACL string constructed
internally in the backend. So, putting one of those characters into the
user name causes what follows to be misinterpreted.

 * aclparse
 *      Consumes and parses an ACL specification of the form:
 *              [group|user] [A-Za-z0-9]*[+-=][rwaR]*

I think that we would need to restructure this internal information to
make the user name field unambiguous no matter its contents.

Bruce, can you put this on the ToDo list? In the meantime I would
suggest _not_ restricting the allowable user names elsewhere, since this
is a bug fix kind of thing...

                     - Tom

pgsql-hackers by date:

Previous
From: "Thomas G. Lockhart"
Date:
Subject: Re: [HACKERS] Re: Bug#21681: postgresql: Doesn't allow granting to www-data
Next
From: Bruce Momjian
Date:
Subject: Re: [HACKERS] Re: Bug#21681: postgresql: Doesn't allow granting to