Home > mailing lists

Re: Backward compat issue with v16 around ROLEs - Mailing list pgsql-general

From	David G. Johnston
Subject	Re: Backward compat issue with v16 around ROLEs
Date	September 11 21:06:34
Msg-id	CAKFQuwYK2Vdnbdaxh9QF_0PYpztg51nc-iqYeiKDfpzek7hTdQ@mail.gmail.com Whole thread Raw
In response to	Backward compat issue with v16 around ROLEs (Dominique Devienne <ddevienne@gmail.com>)
Responses	Re: Backward compat issue with v16 around ROLEs
List	pgsql-general

Tree view

On Wednesday, September 11, 2024, Dominique Devienne <ddevienne@gmail.com> wrote:

on v16:

D:\pdgm\trunk\psc2>psql service=pau16
psql (17beta3, server 16.1)
Type "help" for help.

ddevienne=> create role dd_owner createrole;
CREATE ROLE
ddevienne=> create role dd_admin noinherit;
CREATE ROLE
ddevienne=> grant dd_owner to dd_admin;

As the error indicates, this grant needs to be done with admin option.

Since the with admin option exists in versions prior to v16 this change should work in all of your deployments.

GRANT ROLE
ddevienne=> set role dd_owner;
ERROR: permission denied to set role "dd_owner"
ddevienne=> grant dd_owner to current_user;
GRANT ROLE
ddevienne=> set role dd_owner;
SET
ddevienne=> create role dd_user;
CREATE ROLE
ddevienne=> grant dd_admin to dd_user;
ERROR: permission denied to grant role "dd_admin"
DETAIL: Only roles with the ADMIN option on role "dd_admin" may grant

See comment above.

this role.
ddevienne=>

David J.

pgsql-general by date:

From: Dominique Devienne
Date: 11 September, 20:41:58
Subject: Backward compat issue with v16 around ROLEs

From: Adrian Klaver
Date: 11 September, 21:09:13
Subject: Re: Backward compat issue with v16 around ROLEs

Re: Backward compat issue with v16 around ROLEs - Mailing list pgsql-general

Previous

Next