On Wed, Apr 07, 2004 at 11:23:25 +0100, Adam Witney <awitney@sghms.ac.uk> wrote: > > I'd like to be able to have a PL/pgSQL function defined as SECURITY DEFINER, > but still have access to the calling username within the function. Is this > possible? > > I could pass current_user as a parameter, but of course this could easily be > bypassed. > > Is there a way of coding this? You probably want session_user. ---------------------------(end of broadcast)--------------------------- TIP 8: explain analyze is your friend
