Thread: [HACKERS] Omission in GRANT documentation
grant.sgml says that
the default privileges granted to PUBLIC are as follows: CONNECT and
CREATE TEMP TABLE for databases; EXECUTE privilege for functions;
and USAGE privilege for languages.
But types also have the USAGE privilege for PUBLIC by default:
test=> CREATE TYPE bug_status AS ENUM ('new', 'open', 'closed');
CREATE TYPE
test=> GRANT USAGE ON TYPE bug_status TO duff;
GRANT
test=> REVOKE USAGE ON TYPE bug_status FROM duff;
REVOKE
test=> \dT+ bug_status
List of data types
Schema | Name | ... | Owner | Access privileges | ...
--------+------------+-----+---------+-------------------+-----
public | bug_status | | laurenz | =U/laurenz +|
| | | | laurenz=U/laurenz |
(1 row)
Hence I propose the attached documentation patch.
Yours,
Laurenz Albe
--
Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-hackers
Attachment
Laurenz Albe <laurenz.albe@cybertec.at> writes:
> grant.sgml says that
> the default privileges granted to PUBLIC are as follows: CONNECT and
> CREATE TEMP TABLE for databases; EXECUTE privilege for functions;
> and USAGE privilege for languages.
> But types also have the USAGE privilege for PUBLIC by default:
Yup, that's an oversight.
> Hence I propose the attached documentation patch.
Pushed, with a bit of additional wordsmithing.
regards, tom lane
--
Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-hackers
Tom Lane wrote: >> But types also have the USAGE privilege for PUBLIC by default: > > Yup, that's an oversight. > >> Hence I propose the attached documentation patch. > > Pushed, with a bit of additional wordsmithing. Thanks for taking the time. Yours, Laurenz Albe -- Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-hackers