Home > mailing lists

Re: [Patch Review] TRUNCATE Permission - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: [Patch Review] TRUNCATE Permission
Date	September 1, 2008 20:01:12
Msg-id	4145.1220299258@sss.pgh.pa.us Whole thread Raw
In response to	Re: [Patch Review] TRUNCATE Permission ("Ryan Bradetich" <rbradetich@gmail.com>)
List	pgsql-hackers

Tree view

"Ryan Bradetich" <rbradetich@gmail.com> writes:
>> I do not believe this is a huge issue since truncate is prohibited on the
>> system catalogs
>> by the truncate_check_rel().

Only when allowSystemTableMods is false.  I think it would be a serious
mistake for your patch to treat the system catalogs differently from
other tables.

> Here is the inconsistency I observed:

It seems to me that you are assuming that lack of a TRUNCATE permission
bit is the only valid reason for a "permission denied" failure.  This is
fairly obviously not so, since multiple permissions typically enter into
any command (consider schema-level permissions for instance).
        regards, tom lane

pgsql-hackers by date:

From: "Ryan Bradetich"
Date: 01 September 2008, 19:32:16
Subject: Re: [Patch Review] TRUNCATE Permission

From: David Fetter
Date: 01 September 2008, 20:39:14
Subject: Re: Window functions patch v04 for the September commit fest

Re: [Patch Review] TRUNCATE Permission - Mailing list pgsql-hackers

Previous

Next