From: | Robert Haas <rhaas(at)postgresql(dot)org> |
---|---|
To: | pgsql-committers(at)lists(dot)postgresql(dot)org |
Subject: | pgsql: Improve documentation of the CREATEROLE attibute. |
Date: | 2023-01-03 20:09:51 |
Message-ID: | E1pCnbb-001tDo-7o@gemulon.postgresql.org |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-committers |
Improve documentation of the CREATEROLE attibute.
In user-manag.sgml, document precisely what privileges are conveyed
by CREATEROLE. Make particular note of the fact that it allows
changing passwords and granting access to high-privilege roles.
Also remove the suggestion of using a user with CREATEROLE and
CREATEDB instead of a superuser, as there is no real security
advantage to this approach.
Elsewhere in the documentation, adjust text that suggests that
<literal>CREATEROLE</literal> only allows for role creation, and
refer to the documentation in user-manag.sgml as appropriate.
Patch by me, reviewed by Álvaro Herrera
Discussion: http://postgr.es/m/CA+TgmoZBsPL8nPhvYecx7iGo5qpDRqa9k_AcaW1SbOjugAY1Ag@mail.gmail.com
Branch
------
master
Details
-------
https://git.postgresql.org/pg/commitdiff/1c77873727dfd2e48ab2ece84d1fb1676e95f9a5
Modified Files
--------------
doc/src/sgml/ref/alter_role.sgml | 2 +-
doc/src/sgml/ref/create_role.sgml | 10 ++++-----
doc/src/sgml/ref/createuser.sgml | 18 ++++++++++-----
doc/src/sgml/user-manag.sgml | 47 +++++++++++++++++++++++++++------------
4 files changed, 52 insertions(+), 25 deletions(-)
From | Date | Subject | |
---|---|---|---|
Next Message | David Rowley | 2023-01-03 20:24:03 | pgsql: Fix typo in memutils_memorychunk.h |
Previous Message | Peter Geoghegan | 2023-01-03 19:49:34 | pgsql: vacuumlazy.c: Save get_database_name() in vacrel. |