| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | Stephen Frost <sfrost(at)snowman(dot)net> |
| Cc: | pgsql-hackers(at)postgreSQL(dot)org |
| Subject: | Re: [PATCHES] Roles - SET ROLE Updated |
| Date: | 2005-07-21 21:22:33 |
| Message-ID: | 22981.1121980953@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers pgsql-patches |
Stephen Frost <sfrost(at)snowman(dot)net> writes:
> * Tom Lane (tgl(at)sss(dot)pgh(dot)pa(dot)us) wrote:
>> My current reading of 4.31 is that SET ROLE *doesn't* drop rights, which
>> means we need to rethink all of this. However, on this point:
> Yeah, it seems to add them. Honestly, my recollection from working on
> Oracle is that you have access to all the roles you've been granted when
> you connect as a user. If it'd be useful I'd be happy to see about
> finding out exactly what Oracle does in this regard and if it actually
> follows the specification or what.
Yeah, let's take a look. This wouldn't be the first part of the spec
we've come across that is mostly honored in the breach...
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Stephen Frost | 2005-07-21 21:24:14 | Re: [PATCHES] Roles - SET ROLE Updated |
| Previous Message | Stephen Frost | 2005-07-21 21:10:11 | Re: [PATCHES] Roles - SET ROLE Updated |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Stephen Frost | 2005-07-21 21:24:14 | Re: [PATCHES] Roles - SET ROLE Updated |
| Previous Message | Stephen Frost | 2005-07-21 21:10:11 | Re: [PATCHES] Roles - SET ROLE Updated |