Hello,
I delve into access privileges and I have a problem (or a miscomprehension) when i type \l, \dn+ or \dp with the /yyyy "role that granted this privilege" part.
\l for instance
[postgres:~]$psql
psql (9.6.2)
Type "help" for help.
postgres=# create role superman login superuser;
CREATE ROLE
postgres=# create role user01 login ;
CREATE ROLE
postgres=# create role user02 login ;
CREATE ROLE
postgres=# create database db001;
CREATE DATABASE
postgres=# \l db001
List of databases
Name | Owner | Encoding | Collate | Ctype | Access privileges
-------+----------+----------+-------------+-------------+-------------------
db001 | postgres | UTF8 | en_US.UTF-8 | en_US.UTF-8 |
(1 row)
postgres=# grant connect on database db001 to user01 ;
GRANT
postgres=# \l db001
List of databases
Name | Owner | Encoding | Collate | Ctype | Access privileges
-------+----------+----------+-------------+-------------+-----------------------
db001 | postgres | UTF8 | en_US.UTF-8 | en_US.UTF-8 | =Tc/postgres +
| | | | | postgres=CTc/postgres+
| | | | | user01=c/postgres
(1 row)
postgres=# \q
[postgres:~]$psql -U superman postgres
psql (9.6.2)
Type "help" for help.
postgres=# grant connect on database db001 to user02;
GRANT
postgres=# \l db001
List of databases
Name | Owner | Encoding | Collate | Ctype | Access privileges
-------+----------+----------+-------------+-------------+-----------------------
db001 | postgres | UTF8 | en_US.UTF-8 | en_US.UTF-8 | =Tc/postgres +
| | | | | postgres=CTc/postgres+
| | | | | user01=c/postgres +
| | | | | user02=c/postgres
(1 row)
I thought i would get user02=c/superman but instead i get user02=c/postgres => I don't get the "role that granted this privilege" but i get the owner of the database.
The problem is the same with schemas or tables access privileges.
Can you help me figure this out ?
Thank you in advance
Jean-Michel Scheiwiler
