| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | Jeremy Drake <pgsql(at)jdrake(dot)com> |
| Cc: | Martijn van Oosterhout <kleptog(at)svana(dot)org>, Stefan Kaltenbrunner <stefan(at)kaltenbrunner(dot)cc>, Peter Eisentraut <peter_e(at)gmx(dot)net>, PostgreSQL Patches <pgsql-patches(at)postgresql(dot)org> |
| Subject: | Re: [HACKERS] unprivileged contrib and pl install (formerly tsearch |
| Date: | 2007-01-25 00:20:00 |
| Message-ID: | 12141.1169684400@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers pgsql-patches |
Jeremy Drake <pgsql(at)jdrake(dot)com> writes:
> On Wed, 24 Jan 2007, Jeremy Drake wrote:
>> That would be great, and also it would be great to be able to CREATE
>> LANGUAGE as a regular user for a trusted pl that is already
>> compiled/installed.
> Something like the attached (simple) change to allow CREATE LANGUAGE by
> unprivileged users for trusted languages already present in pg_pltemplate.
If it were merely a matter of removing an error check I think we would
have done it already. However, pltemplate will have all the languages
in it whether the DBA wants to allow them to be used or not; so I'd say
that there really needs to be *some* sort of privilege check here.
What that is and how to implement it are the hard parts.
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2007-01-25 00:30:05 | Re: [GENERAL] Autovacuum Improvements |
| Previous Message | Jeremy Drake | 2007-01-25 00:09:01 | Re: [HACKERS] unprivileged contrib and pl install (formerly tsearch |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Jeremy Drake | 2007-01-25 00:37:43 | Re: [HACKERS] unprivileged contrib and pl install |
| Previous Message | Jeremy Drake | 2007-01-25 00:09:01 | Re: [HACKERS] unprivileged contrib and pl install (formerly tsearch |