| From: | Robert Haas <rhaas(at)postgresql(dot)org> |
|---|---|
| To: | pgsql-committers(at)lists(dot)postgresql(dot)org |
| Subject: | pgsql: Improve documentation of the CREATEROLE attibute. |
| Date: | 2023-01-03 20:09:51 |
| Message-ID: | E1pCnbb-001tDo-7o@gemulon.postgresql.org |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-committers |
Improve documentation of the CREATEROLE attibute.
In user-manag.sgml, document precisely what privileges are conveyed
by CREATEROLE. Make particular note of the fact that it allows
changing passwords and granting access to high-privilege roles.
Also remove the suggestion of using a user with CREATEROLE and
CREATEDB instead of a superuser, as there is no real security
advantage to this approach.
Elsewhere in the documentation, adjust text that suggests that
<literal>CREATEROLE</literal> only allows for role creation, and
refer to the documentation in user-manag.sgml as appropriate.
Patch by me, reviewed by Álvaro Herrera
Discussion: http://postgr.es/m/CA+TgmoZBsPL8nPhvYecx7iGo5qpDRqa9k_AcaW1SbOjugAY1Ag@mail.gmail.com
Branch
------
master
Details
-------
https://git.postgresql.org/pg/commitdiff/1c77873727dfd2e48ab2ece84d1fb1676e95f9a5
Modified Files
--------------
doc/src/sgml/ref/alter_role.sgml | 2 +-
doc/src/sgml/ref/create_role.sgml | 10 ++++-----
doc/src/sgml/ref/createuser.sgml | 18 ++++++++++-----
doc/src/sgml/user-manag.sgml | 47 +++++++++++++++++++++++++++------------
4 files changed, 52 insertions(+), 25 deletions(-)
| From | Date | Subject | |
|---|---|---|---|
| Next Message | David Rowley | 2023-01-03 20:24:03 | pgsql: Fix typo in memutils_memorychunk.h |
| Previous Message | Peter Geoghegan | 2023-01-03 19:49:34 | pgsql: vacuumlazy.c: Save get_database_name() in vacrel. |