Skip site navigation (1)
Skip section navigation (2)
Peripheral Links
Header And Logo
|
Site Navigation
Re: BUG #5147: DBA can not access view
- From: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
- To: "hx.li" <fly2nn(at)126(dot)com>
- Cc: pgsql-bugs(at)postgresql(dot)org
- Subject: Re: BUG #5147: DBA can not access view
- Date: Fri, 30 Oct 2009 09:59:38 -0400
- Message-id: <7536.1256911178@sss.pgh.pa.us> <text/plain>
"hx.li" <fly2nn(at)126(dot)com> writes: >> This is not a bug. The view is owned by user1 and what the view can >> access is determined by user1's permissions, independently of who is >> calling it. > So I think it should not have a permission error when run "select * from > view1". No, that would be a bad idea. Your proposal essentially means that it's impossible for a superuser to give up rights when calling a setuid function or view. That would be a serious security hazard. regards, tom lane
- References:
- Re: BUG #5147: DBA can not access view
- From: hx.li
- Re: BUG #5147: DBA can not access view
- Prev by Date: BUG #5152: Exporting databases with pg_dump changes 'bigserial' to 'bigint'
- Next by Date: Re: BUG #5145: Complex query with lots of LEFT JOIN causes segfault
- Previous by thread: Re: BUG #5147: DBA can not access view
- Next by thread: Small syntax error in fmgr.h
- Indexes: