Home > mailing lists

Re: Add SECURITY_INVOKER_VIEWS option to CREATE DATABASE - Mailing list pgsql-hackers

From	David G. Johnston
Subject	Re: Add SECURITY_INVOKER_VIEWS option to CREATE DATABASE
Date	January 28 22:39:18
Msg-id	CAKFQuwZh0SQdTq+M5umB2Sy1ORNEwMqgL5cpfmEW_B3_iYXQoQ@mail.gmail.com Whole thread Raw
In response to	Re: Add SECURITY_INVOKER_VIEWS option to CREATE DATABASE (Steve Chavez <steve@supabase.io>)
List	pgsql-hackers

Tree view

On Wed, Jan 28, 2026 at 12:19 PM Steve Chavez <steve@supabase.io> wrote:

> I’d be more inclined to change this incompatibility than try to affect action at a distance with a database setting.

Could we instead have a shortcut for view creation like `CREATE SECURE VIEW` (would be the same as WITH (security_invoker = true)`) ? This at least makes it harder to forget specifying the option and also denotes that by default views are insecure (since they're most likely created by security_definer=superuser)

Please don't top-post.

Inventing alternative syntax with the same fundamental issue, just an arguably different failure threshold, is unappealing.

David J.

pgsql-hackers by date:

From: Jeff Davis
Date: 28 January, 22:37:13
Subject: A few pg_locale.c fixes

From: Laurenz Albe
Date: 28 January, 23:28:43
Subject: Re: Add SECURITY_INVOKER_VIEWS option to CREATE DATABASE

Re: Add SECURITY_INVOKER_VIEWS option to CREATE DATABASE - Mailing list pgsql-hackers

Previous

Next