From: | "Andrew Dunstan" <andrew(at)dunslane(dot)net> |
---|---|
To: | <pgsql-hackers(at)postgresql(dot)org> |
Subject: | Re: dropping a user causes pain (#2) |
Date: | 2003-08-11 02:10:47 |
Message-ID: | 1118.24.162.240.126.1060582247.squirrel@www.dunslane.net |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-hackers |
It occurred to me after I wrote that functions with 'security definer'
would present a problem with any default owner changing scheme. I like the
mass reassignment suggestion.
andrew
Chris wrote:
> Ah OK, I must have been thinking of the database owner check. I'd vote
> for (1) checking that they own no objects and by default owning all
> their stuff to the database owner. Plus add an optional clause:
>
> DROP USER foo OWNER TO bob;
>
> Chris
>
>>
>> The docs (new and old) explicitly state you can do this; see for
>> example http://www.postgresql.org/docs/7.3/static/sql-dropuser.html
>>
[snip]
>> But ISTM that in such a case the user's objects should possibly be
>> reassigned to the database owner (who can't be dropped), in kinda the
>> same way that a *nix process that is orphaned is reparented to init. I
>> guess that might break other things, or would it?
>>
>> Or maybe we need 'drop user foo with cascade'.
>>
From | Date | Subject | |
---|---|---|---|
Next Message | Christopher Kings-Lynne | 2003-08-11 02:11:42 | dropping a user causes pain |
Previous Message | Christopher Kings-Lynne | 2003-08-11 01:40:25 | sql99 compat list |