Skip site navigation (1)
Skip section navigation (2)
Peripheral Links
Header And Logo
|
Site Navigation
custom variable classes
- From: Andrew Dunstan <andrew(at)dunslane(dot)net>
- To: PostgreSQL-development <pgsql-hackers(at)postgresql(dot)org>
- Subject: custom variable classes
- Date: Tue, 28 Nov 2006 13:17:18 -0500
One thing I want to look at for 8.3 is improving custom variable classes. Right now these are all user settable, which makes them quite inappropriate for security related settings (such as which perl modules to load for use by trusted plperl). I'm wondering if we should perhaps allow something like:
custom_variable_classes = 'foo' foo:<security_level>.bar = 'blurfl'and providing some mechanism whereby we could ascertain that the value comes from a permitted source.
I know I am not the only person who has noticed that we are a bit lacking in this area.
As far as plperl goes, I guess I could instead use a db table to store a set of module names for plperl to load, but then I would have to do some fairly comprehensive permission tests.
Another possibility would be to provide somewhere in the catalog to store such info. per db might be nicer, though.
Thoughts? cheers andrew
- Follow-Ups:
- Re: custom variable classes
- From: Tom Lane
- Re: custom variable classes
- Prev by Date: Re: Double entries in log for page slots in beta3
- Next by Date: Re: Integrating Replication into Core
- Previous by thread: Double entries in log for page slots in beta3
- Next by thread: Re: custom variable classes
- Indexes: