| From: | Joby John <jobyjc(at)gmail(dot)com> |
|---|---|
| To: | "David G(dot) Johnston" <david(dot)g(dot)johnston(at)gmail(dot)com> |
| Cc: | pgsql-bugs(at)lists(dot)postgresql(dot)org |
| Subject: | Re: BUG #15081: pg_hba_file_rules permission issue |
| Date: | 2018-02-23 15:14:30 |
| Message-ID: | CAAHsARmx0YdnpektLVE0J4wvse9sjNa0U7KnO4CYzyNX0E=HAQ@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-bugs |
Thank you for your response.
On 23 Feb 2018 3:13 pm, "David G. Johnston" <david(dot)g(dot)johnston(at)gmail(dot)com>
wrote:
> On Fri, Feb 23, 2018 at 8:06 AM, PG Bug reporting form <
> noreply(at)postgresql(dot)org> wrote:
>
>> The following bug has been logged on the website:
>>
>> Bug reference: 15081
>> Logged by: Joby John
>> Email address: jobyjc(at)gmail(dot)com
>> PostgreSQL version: 10.2
>> Operating system: Windows 10
>> Description:
>>
>> Hi,
>> To get access to pg_hba_file_rules view, user needs execute privilege on
>> pg_hba_file_rules() function too.
>>
>> But I think this is not the normal behaviour as I can give access to
>> pg_shadow view without granting access to pg_authid table even though
>> pg_authid is used inside pg_shadow.
>>
>
> pg_authid is a table/view while pg_hba_file_rules() is a function. For
> better and worse functions always execute as the user running the query
> while access to tables and views is done as the owner of the view. being
> accessed.
>
> David J.
>
>
| From | Date | Subject | |
|---|---|---|---|
| Next Message | PG Bug reporting form | 2018-02-23 15:16:39 | BUG #15082: PostgreSQL 11 dev bug with window range partition by QUERY |
| Previous Message | David G. Johnston | 2018-02-23 15:13:06 | Re: BUG #15081: pg_hba_file_rules permission issue |