Re: BUG #6076: Unexpected "Security Definer / invoker" interaction

From: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To: "Dave Fennell" <dave(at)microtux(dot)co(dot)uk>
Cc: pgsql-bugs(at)postgresql(dot)org
Subject: Re: BUG #6076: Unexpected "Security Definer / invoker" interaction
Date: 2011-06-24 15:25:42
Message-ID: 26125.1308929142@sss.pgh.pa.us
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-bugs

"Dave Fennell" <dave(at)microtux(dot)co(dot)uk> writes:
> I would expect that if a function defined as "security definer" calls a
> function defined as "security invoker" the "invoker" role used would be the
> "definer" of the first function?

So would I.

> However it appears that the *actual*
> invoker (current user) is used.

You did not provide any evidence of that. Please show a *complete*
self-contained test case.

regards, tom lane

In response to

Browse pgsql-bugs by date

  From Date Subject
Next Message Dmitry Grebeniuk 2011-06-24 16:43:56 BUG #6077: documentation on PQfmod for numeric data types
Previous Message Dave Fennell 2011-06-24 14:48:40 BUG #6076: Unexpected "Security Definer / invoker" interaction