Re: Postgres 12 RLS

From: Paul Förster <paul(dot)foerster(at)gmail(dot)com>
To: Laura Smith <n5d9xq3ti233xiyif2vp(at)protonmail(dot)ch>
Cc: postgre <pgsql-general(at)lists(dot)postgresql(dot)org>
Subject: Re: Postgres 12 RLS
Date: 2020-06-08 10:25:04
Message-ID: B3750A95-C425-4C69-9D85-DAF5582FEA8B@gmail.com
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-general

Hi Laura,

> On 08. Jun, 2020, at 12:17, Laura Smith <n5d9xq3ti233xiyif2vp(at)protonmail(dot)ch> $$ LANGUAGE plpgsql SECURITY DEFINER;

you might want to use security invoker instead of definer.

https://www.postgresql.org/docs/current/sql-createfunction.html#SQL-CREATEFUNCTION-SECURITY

https://www.cybertec-postgresql.com/en/abusing-security-definer-functions/

Cheers,
Paul

In response to

Responses

Browse pgsql-general by date

  From Date Subject
Next Message Ravi Krishna 2020-06-08 10:33:52 Re: Concurrenctly running CREATE TEMP TABLE IF NOT EXISTS [...] AS [...]
Previous Message Laura Smith 2020-06-08 10:17:07 Postgres 12 RLS