Home > mailing lists

Re: How to grant read only functions execute permission to read only user - Mailing list pgsql-general

From	David G. Johnston
Subject	Re: How to grant read only functions execute permission to read only user
Date	July 17, 2023 18:49:23
Msg-id	CAKFQuwYzytvzNw=1BoWow8_uhHkJt3TCP-nVJ8wES1LEmA_3VQ@mail.gmail.com Whole thread Raw
In response to	Re: How to grant read only functions execute permission to read only user (Tomas Vondra <tomas.vondra@enterprisedb.com>)
List	pgsql-general

Tree view

On Mon, Jul 17, 2023, 08:44 Tomas Vondra <tomas.vondra@enterprisedb.com> wrote:

On 7/17/23 16:11, Yi Sun wrote:
> Hello guys,
>
> Our read only user is okay to be granted read only permission of tables.
>
> How to grant read only functions execute permission to read only user,
> is there a simple way to do it please? If not, how to get the list of
> read only functions please? Then can grant one by one based on the list,
> thanks

What is read-only function? I don't think Postgres has anything like
that. Functions inherit the privileges of the user that executes them by
default. So if the user is read-only (i.e. has just SELECT privilege),
then the function can't do any writes either.

By definition any function marked stable or immutable is read-only though the system doesn't enforce that user-specified label.

David J.

pgsql-general by date:

From: Tomas Vondra
Date: 17 July 2023, 18:43:48
Subject: Re: How to grant read only functions execute permission to read only user

From: Erik Wienhold
Date: 17 July 2023, 19:31:20
Subject: Re: Installation Issue

Re: How to grant read only functions execute permission to read only user - Mailing list pgsql-general

Previous

Next