Home > mailing lists

Re: How to get SE-PostgreSQL acceptable - Mailing list pgsql-hackers

From	Robert Haas
Subject	Re: How to get SE-PostgreSQL acceptable
Date	January 31, 2009 15:42:24
Msg-id	603c8f070901310842w746277iff2dcfd364bdfc70@mail.gmail.com Whole thread Raw
In response to	Re: How to get SE-PostgreSQL acceptable (KaiGai Kohei <kaigai@kaigai.gr.jp>)
Responses	Re: How to get SE-PostgreSQL acceptable (KaiGai Kohei <kaigai@kaigai.gr.jp>) Re: How to get SE-PostgreSQL acceptable (Bruce Momjian <bruce@momjian.us>)
List	pgsql-hackers

Tree view

>> IANAC, but that's my impression too.  The simplified patch shouldn't
>> assume that row-level security in its current form is going to end up
>> getting put back in.  AFAICS, there's no reason why the security ID
>> for tables can't be a regular attribute in pg_class, or why the
>> security attribute for columns can't be a regular attribute in
>> pg_attribute.
>
> If it is "identifier", it can be compoundable.
>
> I dislike it is held as "text". It fundamentaly breaks SE-PostgreSQL's
> architecture, and requires to scrap near future.

I think the column in pg_attribute and pg_class can and should be an
OID.  The issue is whether it's a regular OID column or a new system
column.  Stephen and I are saying it should be a regular column.
pg_security can stick around to map OIDs to text labels.

...Robert

pgsql-hackers by date:

From: Andrew Dunstan
Date: 31 January 2009, 15:27:42
Subject: Re: mingw check hung

From: Grzegorz Jaskiewicz
Date: 31 January 2009, 15:47:17
Subject: adding stuff to parser, question

Re: How to get SE-PostgreSQL acceptable - Mailing list pgsql-hackers

Previous

Next