Home > mailing lists

Re: table partitioning and access privileges - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: table partitioning and access privileges
Date	December 26, 2019 22:25:54
Msg-id	6218.1577388354@sss.pgh.pa.us Whole thread Raw
In response to	table partitioning and access privileges (Fujii Masao <masao.fujii@gmail.com>)
Responses	Re: table partitioning and access privileges (Amit Langote <amitlangote09@gmail.com>)
List	pgsql-hackers

Tree view

Fujii Masao <masao.fujii@gmail.com> writes:
> My customer reported me that the queries through a partitioned table
> ignore each partition's SELECT, INSERT, UPDATE, and DELETE privileges,
> on the other hand, only TRUNCATE privilege specified for each partition
> is applied. I'm not sure if this behavior is expected or not. But anyway
> is it better to document that? For example,

>     Access privileges may be defined and removed separately for each partition.
>     But note that queries through a partitioned table ignore each partition's
>     SELECT, INSERT, UPDATE and DELETE privileges, and apply only TRUNCATE one.

I believe it's intentional that we only check access privileges on
the table explicitly named in the query.  So I'd say SELECT etc
are doing the right thing, and if TRUNCATE isn't in step with them
that's a bug to fix, not something to document.

            regards, tom lane

pgsql-hackers by date:

From: Julien Rouhaud
Date: 26 December 2019, 22:18:46
Subject: Re: [PATCH] fix a performance issue with multiple logical-decoding walsenders

From: Mahendra Singh
Date: 26 December 2019, 22:27:06
Subject: Re: [HACKERS] Block level parallel vacuum

Re: table partitioning and access privileges - Mailing list pgsql-hackers

Previous

Next