Thread: [HACKERS] Omission in GRANT documentation
grant.sgml says that the default privileges granted to PUBLIC are as follows: CONNECT and CREATE TEMP TABLE for databases; EXECUTE privilege for functions; and USAGE privilege for languages. But types also have the USAGE privilege for PUBLIC by default: test=> CREATE TYPE bug_status AS ENUM ('new', 'open', 'closed'); CREATE TYPE test=> GRANT USAGE ON TYPE bug_status TO duff; GRANT test=> REVOKE USAGE ON TYPE bug_status FROM duff; REVOKE test=> \dT+ bug_status List of data types Schema | Name | ... | Owner | Access privileges | ... --------+------------+-----+---------+-------------------+----- public | bug_status | | laurenz | =U/laurenz +| | | | | laurenz=U/laurenz | (1 row) Hence I propose the attached documentation patch. Yours, Laurenz Albe -- Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-hackers
Attachment
Laurenz Albe <laurenz.albe@cybertec.at> writes: > grant.sgml says that > the default privileges granted to PUBLIC are as follows: CONNECT and > CREATE TEMP TABLE for databases; EXECUTE privilege for functions; > and USAGE privilege for languages. > But types also have the USAGE privilege for PUBLIC by default: Yup, that's an oversight. > Hence I propose the attached documentation patch. Pushed, with a bit of additional wordsmithing. regards, tom lane -- Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-hackers
Tom Lane wrote: >> But types also have the USAGE privilege for PUBLIC by default: > > Yup, that's an oversight. > >> Hence I propose the attached documentation patch. > > Pushed, with a bit of additional wordsmithing. Thanks for taking the time. Yours, Laurenz Albe -- Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-hackers