Home > mailing lists

Ownership change doesn't change privileges - Mailing list pgsql-hackers

From	Peter Eisentraut
Subject	Ownership change doesn't change privileges
Date	June 20, 2003 11:23:38
Msg-id	Pine.LNX.4.44.0306201147380.2297-100000@peter.localdomain Whole thread Raw
Responses	Re: Ownership change doesn't change privileges (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-hackers

Tree view

When you change the owner of a table and relacl is null, then the new
owner obtains all privileges, because the default privileges apply to the
current owner.  But when relacl is not null, the old owner retains all
privileges and the new owner has none.

Perhaps the privileges of the owner should be represented with a different
flag in the aclitem, alongside world, group, public?

Currently, changing the table ownership requires superuser privileges, so
this situation can be fixed manually.  But when groups can own tables and
users can move table ownerships between their groups (in a way to be
defined), this can be trickier.

Ideas?

-- 
Peter Eisentraut   peter_e@gmx.net

pgsql-hackers by date:

From: Justin Clift
Date: 20 June 2003, 11:00:05
Subject: Re: Two weeks to feature freeze

From: "Jeroen T. Vermeulen"
Date: 20 June 2003, 12:31:07
Subject: Re: Access to transaction status

Ownership change doesn't change privileges - Mailing list pgsql-hackers

Previous

Next