Re: Problem with delete trigger: how to allow only triggers to delete a row?

Поиск
Список
Период
Сортировка
От Tom Lane
Тема Re: Problem with delete trigger: how to allow only triggers to delete a row?
Дата
Msg-id 2599.1223671995@sss.pgh.pa.us
обсуждение исходный текст
Ответ на Re: Problem with delete trigger: how to allow only triggers to delete a row?  (Alvaro Herrera <alvherre@commandprompt.com>)
Ответы Re: Problem with delete trigger: how to allow only triggers to delete a row?
Список pgsql-sql
Дерево обсуждения 
Alvaro Herrera <alvherre@commandprompt.com> writes:
> Looks like you should revoke DELETE privilege from plain users, and
> have your delete trigger be a security definer function.  There would be
> another security definer function to delete non-deduced rows which users
> can call directly.

That seems overly complicated to use.

If the triggers that are privileged to delete deduced rows run as a
special user, couldn't the validation triggers look at CURRENT_USER
to see whether to allow the delete of a deduced row or not?
        regards, tom lane

В списке pgsql-sql по дате отправления:

Предыдущее
От: Aarni Ruuhimäki
Дата:
Сообщение: SELECT multiple MAX(id)s ?
Следующее
От: Adrian Klaver
Дата:
Сообщение: Re: Problem with delete trigger: how to allow only triggers to delete a row?