Paul Hart <paulhart(at)redchocolate(dot)ca> writes:
> In RDBMSs such as Oracle, stored PL/SQL functions run with the
> permissions of the user that creates the function. Users who are given
> EXECUTE privileges then call the function with the permissions of the
> creator of the function.
Use "SECURITY DEFINER" to get this behavior in Postgres.
The SQL99 spec punts as to whether SECURITY DEFINER should be the
default or not, so unfortunately neither we nor Oracle can be said
to be wrong on this point...
regards, tom lane