Quick Links

pgsql: Add support for security invoker views.

From:	Dean Rasheed <dean(dot)a(dot)rasheed(at)gmail(dot)com>
To:	pgsql-committers(at)lists(dot)postgresql(dot)org
Subject:	pgsql: Add support for security invoker views.
Date:	2022-03-22 10:31:39
Message-ID:	E1nWbne-000qzv-L0@gemulon.postgresql.org
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-committers

Add support for security invoker views.

A security invoker view checks permissions for accessing its
underlying base relations using the privileges of the user of the
view, rather than the privileges of the view owner. Additionally, if
any of the base relations are tables with RLS enabled, the policies of
the user of the view are applied, rather than those of the view owner.

This allows views to be defined without giving away additional
privileges on the underlying base relations, and matches a similar
feature available in other database systems.

It also allows views to operate more naturally with RLS, without
affecting the assignments of policies to users.

Christoph Heiss, with some additional hacking by me. Reviewed by
Laurenz Albe and Wolfgang Walther.

Discussion: https://postgr.es/m/b66dd6d6-ad3e-c6f2-8b90-47be773da240%40cybertec.at

Branch
------
master

Details
-------
https://git.postgresql.org/pg/commitdiff/7faa5fc84bf46ea6c543993cffb8be64dff60d25

Modified Files
--------------
doc/src/sgml/ref/alter_view.sgml | 12 +-
doc/src/sgml/ref/create_policy.sgml | 4 +-
doc/src/sgml/ref/create_view.sgml | 105 +++++++++--
doc/src/sgml/ref/lock.sgml | 13 +-
doc/src/sgml/rules.sgml | 11 +-
src/backend/access/common/reloptions.c | 11 ++
src/backend/commands/lockcmds.c | 19 +-
src/backend/rewrite/rewriteHandler.c | 18 +-
src/backend/utils/cache/relcache.c | 73 +++++---
src/include/utils/rel.h | 11 ++
src/test/regress/expected/create_view.out | 46 ++++-
src/test/regress/expected/lock.out | 66 +++++++
src/test/regress/expected/rowsecurity.out | 257 +++++++++++++++++++++++++-
src/test/regress/expected/rules.out | 30 +++
src/test/regress/expected/updatable_views.out | 237 ++++++++++++++++++++++++
src/test/regress/sql/create_view.sql | 22 ++-
src/test/regress/sql/lock.sql | 49 +++++
src/test/regress/sql/rowsecurity.sql | 122 ++++++++++++
src/test/regress/sql/rules.sql | 28 +++
src/test/regress/sql/updatable_views.sql | 180 ++++++++++++++++++
20 files changed, 1239 insertions(+), 75 deletions(-)

Browse pgsql-committers by date

	From	Date	Subject
Next Message	Tom Lane	2022-03-22 14:19:25	pgsql: Revert "graceful shutdown" changes for Windows.
Previous Message	Peter Eisentraut	2022-03-22 08:00:06	pgsql: pgcrypto: Remove internal padding implementation