Home > mailing lists

pgsql: Allow users with BYPASSRLS to alter their own passwords. - Mailing list pgsql-committers

From	Tom Lane
Subject	pgsql: Allow users with BYPASSRLS to alter their own passwords.
Date	November 3, 2020 23:41:56
Msg-id	E1ka37s-0005o0-Su@gemulon.postgresql.org Whole thread Raw
List	pgsql-committers

Tree view

Allow users with BYPASSRLS to alter their own passwords.

The intention in commit 491c029db was to require superuserness to
change the BYPASSRLS property, but the actual effect of the coding
in AlterRole() was to require superuserness to change anything at all
about a BYPASSRLS role.  Other properties of a BYPASSRLS role should
be changeable under the same rules as for a normal role, though.

Fix that, and also take care of some documentation omissions related
to BYPASSRLS and REPLICATION role properties.

Tom Lane and Stephen Frost, per bug report from Wolfgang Walther.
Back-patch to all supported branches.

Discussion: https://postgr.es/m/a5548a9f-89ee-3167-129d-162b5985fcf8@technowledgy.de

Branch
------
REL9_6_STABLE

Details
-------
https://git.postgresql.org/pg/commitdiff/04c4b495b1c93c40bc989c450ca8fb5bea965e27

Modified Files
--------------
doc/src/sgml/ref/alter_role.sgml  |  6 ++++--
doc/src/sgml/ref/create_role.sgml | 11 +++++++++--
src/backend/commands/user.c       | 10 ++++++----
3 files changed, 19 insertions(+), 8 deletions(-)

pgsql-committers by date:

From: Peter Eisentraut
Date: 03 November 2020, 17:50:54
Subject: pgsql: Disallow ALTER TABLE ONLY / DROP EXPRESSION

From: Tom Lane
Date: 03 November 2020, 23:49:11
Subject: pgsql: Improve error messages around REPLICATION and BYPASSRLS properti

pgsql: Allow users with BYPASSRLS to alter their own passwords. - Mailing list pgsql-committers

Previous

Next