Ownership change doesn't change privileges - Mailing list pgsql-hackers

From Peter Eisentraut
Subject Ownership change doesn't change privileges
Date
Msg-id Pine.LNX.4.44.0306201147380.2297-100000@peter.localdomain
Whole thread Raw
Responses Re: Ownership change doesn't change privileges
List pgsql-hackers
When you change the owner of a table and relacl is null, then the new
owner obtains all privileges, because the default privileges apply to the
current owner.  But when relacl is not null, the old owner retains all
privileges and the new owner has none.

Perhaps the privileges of the owner should be represented with a different
flag in the aclitem, alongside world, group, public?

Currently, changing the table ownership requires superuser privileges, so
this situation can be fixed manually.  But when groups can own tables and
users can move table ownerships between their groups (in a way to be
defined), this can be trickier.

Ideas?

-- 
Peter Eisentraut   peter_e@gmx.net



pgsql-hackers by date:

Previous
From: Justin Clift
Date:
Subject: Re: Two weeks to feature freeze
Next
From: "Jeroen T. Vermeulen"
Date:
Subject: Re: Access to transaction status