Home > mailing lists

Re: How to create read-only view on 9.3 - Mailing list pgsql-hackers

From	Josh Berkus
Subject	Re: How to create read-only view on 9.3
Date	August 13, 2013 23:24:36
Msg-id	520A95FB.1050008@agliodbs.com Whole thread Raw
In response to	How to create read-only view on 9.3 (Tomonari Katsumata <katsumata.tomonari@po.ntts.co.jp>)
Responses	Re: How to create read-only view on 9.3 (Tomonari Katsumata <katsumata.tomonari@po.ntts.co.jp>)
List	pgsql-hackers

Tree view

On 08/13/2013 11:18 AM, Tom Lane wrote:
> Hannu Krosing <hannu@2ndQuadrant.com> writes:
>> If you earlier used views for granting limited read access to some views
>> you definitely did not want view users suddenly gain also write access to
>> underlying table.
> 
> Unless you'd explicitly granted those users insert/update/delete privilege
> on the view, they wouldn't suddenly be able to do something new in 9.3,
> because no such privileges are granted by default.  If you had granted
> such privileges, you don't have much of a leg to stand on for complaining
> that now they can do it.

Ah, ok.  I hadn't gotten to the testing phase yet.

I think we should have a script available for revoking all write privs
on all views and link it from somewhere (the release notes?), but I
don't see any need to change anything in the release.

-- 
Josh Berkus
PostgreSQL Experts Inc.
http://pgexperts.com

pgsql-hackers by date:

From: Greg Stark
Date: 13 August 2013, 23:12:47
Subject: Re: Foreground vacuum and buffer access strategy

From: Greg Stark
Date: 13 August 2013, 23:34:35
Subject: Re: Review: UNNEST (and other functions) WITH ORDINALITY

Re: How to create read-only view on 9.3 - Mailing list pgsql-hackers

Previous

Next