| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | Joe Conway <mail(at)joeconway(dot)com> |
| Cc: | Peter Eisentraut <peter_e(at)gmx(dot)net>, PostgreSQL Development <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Sequence privileges |
| Date: | 2002-05-18 23:45:30 |
| Message-ID: | 24945.1021765530@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Joe Conway <mail(at)joeconway(dot)com> writes:
> Tom Lane wrote:
>> what we really have is:
>>
>> SELECT: read sequence as a table
>> UPDATE: all sequence-specific operations.
> Since the sequence-specific operations are really just function calls,
> maybe it should be:
> SELECT: read sequence as a table
> EXECUTE: all sequence-specific operations.
But is it worth creating a compatibility problem for? Existing pg_dump
scripts are likely to GRANT UPDATE. They certainly won't say GRANT
EXECUTE since that doesn't even exist in current releases.
I agree that EXECUTE (or some sequence-specific permission name we might
think of instead) would be logically cleaner, but I don't think it's
worth the trouble of coming up with a compatibility workaround. UPDATE
doesn't seem unreasonably far off the mark.
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Neil Conway | 2002-05-19 00:00:00 | Re: Sequence privileges |
| Previous Message | Joe Conway | 2002-05-18 23:23:22 | Re: Sequence privileges |