Home > mailing lists

Re: Add SECURITY_INVOKER_VIEWS option to CREATE DATABASE - Mailing list pgsql-hackers

From	David G. Johnston
Subject	Re: Add SECURITY_INVOKER_VIEWS option to CREATE DATABASE
Date	January 27 21:02:34
Msg-id	CAKFQuwYa=UuoU6Pb1YzUkwkw60k+NfqCaO+qsuCKD_-uJ85ysQ@mail.gmail.com Whole thread Raw
In response to	Add SECURITY_INVOKER_VIEWS option to CREATE DATABASE (Steve Chavez <steve@supabase.io>)
List	pgsql-hackers

Tree view

On Tuesday, January 27, 2026, Steve Chavez <steve@supabase.io> wrote:

Hello hackers,

Currently views are not secure by default since they bypass RLS. PostgreSQL 15 introduced the `WITH (security_invoker = true)` option for this but it's easy to miss on every new view created.

It's also inconsistent with functions, which default to SECURITY INVOKER.

I’d be more inclined to change this incompatibility than try to affect action at a distance with a database setting. But suspect the status-quo is likely to prevail. Maybe we need a view of views that reference RLS relations that aren’t security_invoker? Add something to the docs? If one knows enough to enable a database setting they can institute different less problematic solutions as well. Maybe we provide an event trigger example.

David J.

pgsql-hackers by date:

From: Steve Chavez
Date: 27 January, 20:46:41
Subject: Re: Add SECURITY_INVOKER_VIEWS option to CREATE DATABASE

From: "Jelte Fennema-Nio"
Date: 27 January, 21:10:11
Subject: Re: Safer hash table initialization macro

Re: Add SECURITY_INVOKER_VIEWS option to CREATE DATABASE - Mailing list pgsql-hackers

Previous

Next