| From: | Jobin Augustine <jobin(dot)augustine(at)percona(dot)com> |
|---|---|
| To: | Amit Kapila <amit(dot)kapila16(at)gmail(dot)com> |
| Cc: | Jan Katins <jasc(at)gmx(dot)net>, Jobin Augustine <jobinau(at)gmail(dot)com>, PostgreSQL mailing lists <pgsql-bugs(at)lists(dot)postgresql(dot)org> |
| Subject: | Re: Security Definer functions no longer works in PG14+ |
| Date: | 2022-05-08 07:03:25 |
| Message-ID: | CAEpZXffZkdKAtEwmJL4hqm4nmNzhnqPHrSJ=KZC_bu2dHVHZMg@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-bugs |
Hi Amit,
Good to know that workaround helps your use case. But I am curious to know
> why you want to use Alter Subscription .. Refresh via function? The same
> restriction holds for Create/Drop Subscription as well but you don't seem
> to be using those via function.
>
> Yes, the workaround really helps to continue the operations as it was.
let me explain.
In a typical operations case, owner / someone with superuser privilege sets
up everything as part of the deployment and then hands over the day-to-day
operations of different teams who do 24x7 coverage.
Those teams in regular operations support won't be given superuser
privilege or owner account because of obvious reasons.
A function with "SECURITY DEFINER" is generally used as a method to hand
over only the required privilege just to refresh the subscription.
Thanks and Regards,
Jobin.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | PG Bug reporting form | 2022-05-08 22:11:03 | BUG #17476: ERROR: "variable not found in subplan target list" when running SELECT COUNT(*) |
| Previous Message | Amit Kapila | 2022-05-07 10:22:05 | Re: Security Definer functions no longer works in PG14+ |