Re: Proposal for enhancements of privilege system - Mailing list pgsql-hackers

From Peter Eisentraut
Subject Re: Proposal for enhancements of privilege system
Date
Msg-id Pine.LNX.4.21.0005232332490.359-100000@localhost.localdomain
Whole thread Raw
In response to Re: Proposal for enhancements of privilege system  (Tom Lane <tgl@sss.pgh.pa.us>)
List pgsql-hackers
Tom Lane writes:

> Really, having an OID column that might reference either users or groups
> is the SQL equivalent of a type pun.

Well, I don't really know what a type pun is but the priobj column would
do exactly the same thing by referring to tables, types, functions, etc.
by unadorned oid, which I thought would be pretty nice. Really, in normal
mode of operation there is never a question "Does this privilege apply to
a user or a group?" it's always "Given this object and this user/group id,
do I have access?" I don't see that as a practical problem, but I'll think
about it.


-- 
Peter Eisentraut                  Sernanders väg 10:115
peter_e@gmx.net                   75262 Uppsala
http://yi.org/peter-e/            Sweden



pgsql-hackers by date:

Previous
From: The Hermit Hacker
Date:
Subject: New Lists ...
Next
From: Peter Eisentraut
Date:
Subject: Re: Serious problem within authentication subsystem in 7.0