Re: ALTER DEFAULT PRIVILEGES FOR ROLE is broken

From: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To: Josh Berkus <josh(at)agliodbs(dot)com>
Cc: pgsql-hackers(at)postgresql(dot)org
Subject: Re: ALTER DEFAULT PRIVILEGES FOR ROLE is broken
Date: 2013-04-29 16:59:18
Message-ID: 4866.1367254758@sss.pgh.pa.us
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-hackers

Josh Berkus <josh(at)agliodbs(dot)com> writes:
> This moves the general brokenness of this feature from a bug to (a) a
> documentation issue and (b) unusably fussy. For (a), I think we need
> the following line in the docs:

> DEFAULT PRIVILEGES may only be granted to a ROLE which already has
> CREATE permission on the specified schema.

As I pointed out to you last night, it does already say that.
I think the problem here is that we're just throwing a generic
permissions failure rather than identifying the particular permission
needed.

regards, tom lane

In response to

Responses

Browse pgsql-hackers by date

  From Date Subject
Next Message Josh Berkus 2013-04-29 17:04:11 Re: ALTER DEFAULT PRIVILEGES FOR ROLE is broken
Previous Message Jeff Janes 2013-04-29 16:56:28 Re: [PATCH] add --throttle option to pgbench