Home > mailing lists

Re: pgsql: Revoke PUBLIC CREATE from public schema, now owned by pg_databas - Mailing list pgsql-hackers

From	David G. Johnston
Subject	Re: pgsql: Revoke PUBLIC CREATE from public schema, now owned by pg_databas
Date	December 1, 2022 01:58:36
Msg-id	CAKFQuwZO-cbzeZ0m4w+pToB0LuvL-YrkGv7g-i-+xamxY-UprA@mail.gmail.com Whole thread Raw
In response to	Re: pgsql: Revoke PUBLIC CREATE from public schema, now owned by pg_databas (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-hackers

Tree view

On Wed, Nov 30, 2022 at 3:35 PM Tom Lane <tgl@sss.pgh.pa.us> wrote:

BTW, is "create a schema with the same name" sufficient detail?
You have to either make it owned by that user, or explicitly
grant CREATE permission on it. I'm not sure if that detail
belongs here, but it feels like maybe it does.

I'd mention the ownership variant and suggest using the AUTHORIZATION clause, with an explicit example.

CREATE SCHEMA role_name AUTHORIZATION role_name;

David J.

pgsql-hackers by date:

From: Isaac Morland
Date: 01 December 2022, 01:57:20
Subject: Re: pgsql: Revoke PUBLIC CREATE from public schema, now owned by pg_databas

From: David Rowley
Date: 01 December 2022, 02:11:56
Subject: Re: Non-decimal integer literals

Re: pgsql: Revoke PUBLIC CREATE from public schema, now owned by pg_databas - Mailing list pgsql-hackers

Previous

Next