2005/9/28, Richard Huxton <dev@archonet.com>:
> Wijnand Wiersma wrote:
> > I thought that when a rule is applied the triggers which are triggerd
> > would also have the same userid as the rule query, but I was wrong.
>
> Can you show the (cut down) contents of your trigger? It's difficult to
> see what you mean. I can't think of any way a trigger can provide
> results to the user, so any selects within it should be safe enough.
The trigger function is very very long and touches tables the normal
user should not touch. I can't grant select, update and insert to the
users, there is only one user who has the rights to do that. Normal
users should work with the given views and those views are made so
that users only see information that is relevant for them.
database=> update v_my_account set pause='yes';
ERROR: permission denied for relation contact
CONTEXT: PL/pgSQL function "activate_contact" line 5 at select into variables
The rule update_v_my_account works and runs as the special user since
that user is owner of v_my_account. It is just strange that the
triggers run as my normal user.
Wijnand
