Home > mailing lists

Re: RLS Design - Mailing list pgsql-hackers

From	Robert Haas
Subject	Re: RLS Design
Date	July 2, 2014 18:48:56
Msg-id	CA+Tgmoah83X-0v6ZMTEfiRe-09TBVB-Zmhkn-FOcRanRQkin7A@mail.gmail.com Whole thread Raw
In response to	Re: RLS Design (Stephen Frost <sfrost@snowman.net>)
Responses	Re: RLS Design (Stephen Frost <sfrost@snowman.net>)
List	pgsql-hackers

Tree view

On Wed, Jul 2, 2014 at 11:42 AM, Stephen Frost <sfrost@snowman.net> wrote:
>> > What if policies exist and they decide to
>> > 'turn off' RLS for the table- suddenly everyone can see all the rows?
>>
>> That'd be my vote.  Sorta like disabling triggers.
>
> Hmm.  Ok- how would you feel about at least spitting out a WARNING if
> there are still policies on the table in that case..?  Just makes me a
> bit nervous to have a case where policies can be defined on a table but
> are not actually being enforced..

Sounds like nanny-ism to me.

-- 
Robert Haas
EnterpriseDB: http://www.enterprisedb.com
The Enterprise PostgreSQL Company

pgsql-hackers by date:

From: Kevin Grittner
Date: 02 July 2014, 18:48:40
Subject: Re: Re: Patch to send transaction commit/rollback stats to the stats collector unconditionally.

From: Robert Haas
Date: 02 July 2014, 18:52:09
Subject: Re: Re: Patch to send transaction commit/rollback stats to the stats collector unconditionally.

Re: RLS Design - Mailing list pgsql-hackers

Previous

Next