| From: | Robert Haas <robertmhaas(at)gmail(dot)com> |
|---|---|
| To: | "Brightwell, Adam" <adam(dot)brightwell(at)crunchydatasolutions(dot)com> |
| Cc: | Gregory Smith <gregsmithpgsql(at)gmail(dot)com>, Craig Ringer <craig(at)2ndquadrant(dot)com>, Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, Stephen Frost <sfrost(at)snowman(dot)net>, Craig Ringer <craig(at)hobby(dot)2ndquadrant(dot)com>, PostgreSQL Hackers <pgsql-hackers(at)postgresql(dot)org>, Alvaro Herrera <alvherre(at)hobby(dot)2ndquadrant(dot)com>, Andres Freund <andres(at)hobby(dot)2ndquadrant(dot)com>, Yeb Havinga <yeb(dot)havinga(at)portavita(dot)nl> |
| Subject: | Re: API change advice: Passing plan invalidation info from the rewriter into the planner? |
| Date: | 2014-06-18 13:25:37 |
| Message-ID: | CA+Tgmoa30KKuurSsQerbqG1u5YHcaqJf01RL33zro+rpex4Lwg@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Tue, Jun 17, 2014 at 9:45 PM, Brightwell, Adam
<adam(dot)brightwell(at)crunchydatasolutions(dot)com> wrote:
> I absolutely appreciate all of the feedback that has been provided. It has
> been educational. To your point above, I started putting together a wiki
> page, as Stephen has spoken to, that is meant to capture these concerns and
> considerations as well as to capture ideas around solutions.
>
> https://wiki.postgresql.org/wiki/Row_Security_Considerations
>
> This page is obviously not complete, but I think it is a good start.
> Hopefully this document will help to continue the conversation and assist in
> addressing all the concerns that have been brought to the table. As well, I
> hope that this document serves to demonstrate our intent and that we *are*
> taking these concerns seriously. I assure you that as one of the
> individuals who is working towards the acceptance of this feature/patch, I
> am very much concerned about meeting the expected standards of quality and
> security.
Cool, thanks for weighing in. I think that page is a good start. An
item that I think should be added there is the potential overlap
between security_barrier views and row-level security. How can we
reuse code (and SQL syntax?) for existing features like WITH CHECK
OPTION instead of writing new code (and inventing new syntax) for very
similar concepts?
--
Robert Haas
EnterpriseDB: http://www.enterprisedb.com
The Enterprise PostgreSQL Company
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Craig Ringer | 2014-06-18 13:30:26 | Re: Proposal for CSN based snapshots |
| Previous Message | Tom Lane | 2014-06-18 13:24:38 | Re: comparison operators |