Home > mailing lists

Re: row_security GUC, BYPASSRLS - Mailing list pgsql-hackers

From	Joe Conway
Subject	Re: row_security GUC, BYPASSRLS
Date	September 18, 2015 17:27:24
Msg-id	55FC1F41.4000001@joeconway.com Whole thread Raw
In response to	Re: row_security GUC, BYPASSRLS (Adam Brightwell <adam.brightwell@crunchydatasolutions.com>)
Responses	Re: row_security GUC, BYPASSRLS (Noah Misch <noah@leadboat.com>)
List	pgsql-hackers

Tree view

On 09/18/2015 09:25 AM, Adam Brightwell wrote:
>>> 1. remove row_security=force
>>> 2. remove SECURITY_ROW_LEVEL_DISABLED; make ri_triggers.c subject to policies
>>> 3. add DDL-controlled, per-table policy forcing
>>>
>>> They ought to land in that order.  PostgreSQL 9.5 would need at least (1) and
>>> (2); would RLS experts find it beneficial for me to take care of those?
>>
>> That would be awesome, but I would say that if we do #1 & 2 for 9.5, we
>> also need #3.
>
> Agreed.  Please let me know if there is anything I can do to help.


Yes, same here.

Joe


--
Crunchy Data - http://crunchydata.com
PostgreSQL Support for Secure Enterprises
Consulting, Training, & Open Source Development

pgsql-hackers by date:

From: Teodor Sigaev
Date: 18 September 2015, 17:26:46
Subject: Re: [COMMITTERS] pgsql: Add pages deleted from pending list to FSM

From: Teodor Sigaev
Date: 18 September 2015, 17:29:11
Subject: Re: tsvector work with citext

Re: row_security GUC, BYPASSRLS - Mailing list pgsql-hackers

Previous

Next