| From: | Chapman Flack <chap(at)anastigmatix(dot)net> |
|---|---|
| To: | PostgreSQL Hackers <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Where is it documented what role executes constraint triggers? |
| Date: | 2017-11-03 18:09:00 |
| Message-ID: | 0b7c00ac-deb6-826d-e17d-7faf69830025@anastigmatix.net |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
From a little experimenting in 9.5, it seems that a referential
integrity trigger is executed with the identity of the referencED
table's owner, but I have not been able to find this covered in
the docs. Is this a documentation oversight, or is it explained
somewhere I didn't look (or may have skimmed right over it)?
The question came up at $work after the departure of $colleague,
who had created some tables as himself and not changed their
ownership. His role had the superuser bit at the time, so
RI checks involving those tables never incurred 'permission denied'
errors until he left. Then, his role was not dropped, only disabled
for login and made no longer superuser, and that's when RI checks
started incurring 'permission denied'.
-Chap
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Nico Williams | 2017-11-03 18:11:58 | Re: Where is it documented what role executes constraint triggers? |
| Previous Message | Nico Williams | 2017-11-03 17:56:28 | Re: [PATCH] Add ALWAYS DEFERRED option for constraints |