Home > mailing lists

Re: BUG #5147: DBA can not access view - Mailing list pgsql-bugs

From	Tom Lane
Subject	Re: BUG #5147: DBA can not access view
Date	October 30, 2009 13:59:54
Msg-id	7536.1256911178@sss.pgh.pa.us Whole thread Raw
In response to	Re: BUG #5147: DBA can not access view ("hx.li" <fly2nn@126.com>)
List	pgsql-bugs

Tree view

"hx.li" <fly2nn@126.com> writes:
>> This is not a bug.  The view is owned by user1 and what the view can
>> access is determined by user1's permissions, independently of who is
>> calling it.

> So I think it should not have a permission error when run "select * from
> view1".

No, that would be a bad idea.  Your proposal essentially means that it's
impossible for a superuser to give up rights when calling a setuid
function or view.  That would be a serious security hazard.

            regards, tom lane

pgsql-bugs by date:

From: "hx.li"
Date: 30 October 2009, 06:58:23
Subject: Re: BUG #5147: DBA can not access view

From: Tom Lane
Date: 30 October 2009, 15:34:15
Subject: Re: BUG #5145: Complex query with lots of LEFT JOIN causes segfault

Re: BUG #5147: DBA can not access view - Mailing list pgsql-bugs

Previous

Next