Home > mailing lists

Re: [RFC] A tackle to the leaky VIEWs for RLS - Mailing list pgsql-hackers

From	Greg Stark
Subject	Re: [RFC] A tackle to the leaky VIEWs for RLS
Date	June 1, 2010 15:42:13
Msg-id	AANLkTimsopckZ2cdINs5kucuTq-lmrtcUSmtiF6T2dA4@mail.gmail.com Whole thread Raw
In response to	Re: [RFC] A tackle to the leaky VIEWs for RLS (Robert Haas <robertmhaas@gmail.com>)
Responses	Re: [RFC] A tackle to the leaky VIEWs for RLS (Stephen Frost <sfrost@snowman.net>)
List	pgsql-hackers

Tree view

Also incidentally I'm having trouble imagining a scenario where this
really matters. For it to be an issue you would have to simultaneously
have a user which can't access all the data and must go through views
which limit the data he can access -- and has privileges to issue DDL
to create functions and operators. That seems like an unlikely
combination. I've seen views used before to restrict the role accounts
used by front-end applications but those accounts have no DDL
privileges.

pgsql-hackers by date:

From: Thom Brown
Date: 01 June 2010, 15:41:24
Subject: Re: VACUUM messages without newlines

From: "Kevin Grittner"
Date: 01 June 2010, 15:46:07
Subject: Re: dividing money by money

Re: [RFC] A tackle to the leaky VIEWs for RLS - Mailing list pgsql-hackers

Previous

Next