Home > mailing lists

Re: Role Self-Administration - Mailing list pgsql-hackers

From	Vik Fearing
Subject	Re: Role Self-Administration
Date	October 7, 2021 12:06:06
Msg-id	ff7ef3f8-ccc9-e004-6451-dec9de3a20a9@postgresfriends.org Whole thread Raw
In response to	Re: Role Self-Administration (Stephen Frost <sfrost@snowman.net>)
Responses	Re: Role Self-Administration (Stephen Frost <sfrost@snowman.net>)
List	pgsql-hackers

Tree view

On 10/6/21 8:48 PM, Stephen Frost wrote:
> Consider that with what you're proposing, a user could execute the
> following series of entirely SQL-spec compliant statements, and get
> very different results depending on if we have this 'ownership' concept
> or not:
> 
> SET ROLE postgres;
> CREATE ROLE r1;
> 
> SET ROLE r1;
> CREATE ROLE r2;
> 
> SET ROLE postgres;
> DROP ROLE r1 CASCADE;
> 
> With what you're suggesting, the end result would be that r2 no longer
> exists, whereas with the spec-defined behvaior, r2 *would* still exist.

The way I read the spec, r2 would be destroyed along with its objects.

12.7 GR 30.b.i says to destroy all abandoned role authorization
descriptors, and r2 matches that according to my reading of 12.7 GR 7.
-- 
Vik Fearing

pgsql-hackers by date:

From: Etsuro Fujita
Date: 07 October 2021, 11:57:47
Subject: Re: a comment in joinrel.c: compute_partition_bounds()

From: Etsuro Fujita
Date: 07 October 2021, 12:27:44
Subject: Re: postgres_fdw: Obsolete comments in GetConnection()

Re: Role Self-Administration - Mailing list pgsql-hackers

Previous

Next