Home > mailing lists

Re: [COMMITTERS] pgsql: Row-Level Security Policies (RLS) - Mailing list pgsql-hackers

From	Dean Rasheed
Subject	Re: [COMMITTERS] pgsql: Row-Level Security Policies (RLS)
Date	May 27, 2015 10:12:02
Msg-id	CAEZATCWK=YjbKF3mGPW=astWK7pmNWdcU26_RGszgkRXsDNV4Q@mail.gmail.com Whole thread Raw
In response to	Re: [COMMITTERS] pgsql: Row-Level Security Policies (RLS) (Stephen Frost <sfrost@snowman.net>)
Responses	Re: [COMMITTERS] pgsql: Row-Level Security Policies (RLS) (Stephen Frost <sfrost@snowman.net>)
List	pgsql-hackers

Tree view

On 27 May 2015 at 02:42, Stephen Frost <sfrost@snowman.net> wrote:
> Now, looking at the code, I'm actually failing to see a case where we
> use the RowSecurityPolicy->policy_name..  Perhaps *that's* what we
> should be looking to remove?
>

If we add support for restrictive policies, it would be possible, and
I think desirable, to report on which policy was violated. For that,
having the policy name would be handy. We might also arguably decide
to enforce restrictive RLS policies in name order, like check
constraints. Of course none of that means it must be kept now, but it
feels like a useful field to keep nonetheless.

Regards,
Dean

pgsql-hackers by date:

From: Abhijit Menon-Sen
Date: 27 May 2015, 09:43:43
Subject: Re: fsync-pgdata-on-recovery tries to write to more files than previously

From: Naoya Anzai
Date: 27 May 2015, 11:15:38
Subject: Re: why does txid_current() assign new transaction-id?

Re: [COMMITTERS] pgsql: Row-Level Security Policies (RLS) - Mailing list pgsql-hackers

Previous

Next