Re: Making "SECURITY DEFINER" procedures.. - SOLVED

Поиск
Список
Период
Сортировка
От Stephan Szabo
Тема Re: Making "SECURITY DEFINER" procedures.. - SOLVED
Дата
Msg-id 20030429215026.I66727-100000@megazone23.bigpanda.com
обсуждение исходный текст
Ответ на Re: Making "SECURITY DEFINER" procedures.. - SOLVED  (Tom Lane <tgl@sss.pgh.pa.us>)
Список pgsql-sql
On Wed, 30 Apr 2003, Tom Lane wrote:

> Sergey Holod <sss@radiocom.net.ua> writes:
> > GRANT USAGE ON schema data TO rcbilling;
> > Don't fully undestand why I need that, but It works..
>
> Okay, that's the same bug we found just a couple days ago.  Schema-usage
> errors are checked at query parse time, not execution time, and the
> foreign-key triggers weren't being careful to set the right context for
> those checks.  There's a fix in place for 7.3.3.

As a more general question, as what user should triggers from an action
inside a security definer function be run as?  The fk triggers will work
after changing the place the permissions are changed, but afaics user
after triggers won't unless the trigger function is also security definer.



В списке pgsql-sql по дате отправления:

Предыдущее
От: Tom Lane
Дата:
Сообщение: Re: Making "SECURITY DEFINER" procedures.. - SOLVED
Следующее
От: Achilleus Mantzios
Дата:
Сообщение: 7.3 analyze & vacuum analyze problem