Christophe Pettus <xof@xxxxxxxxxxxx> writes: > It works correctly for me, on MacOS: > swift-239:~ xof$ psql > psql (14.5) > Type "help" for help. > xof=# create user r1; > CREATE ROLE > xof=# revoke execute on function pg_terminate_backend from r1; > REVOKE > xof=# > \q > swift-239:~ xof$ psql -U r1 xof > psql (14.5) > Type "help" for help. > xof=> select pg_terminate_backend(123); > ERROR: permission denied for function pg_terminate_backend > xof=> Hmm ... that should actually *not* have worked. pg_terminate_backend has the default ACL for functions, namely GRANT EXECUTE TO PUBLIC. If you revoke from a specific user, nothing will change because the PUBLIC grant is still there and they can still use it. Perhaps you'd already revoked from public in this database? (I recall that somewhere we have some code that warns about no-op grants. I wonder if issuing a warning for no-op revokes would be helpful.) Jeremy's nearby theory that the REVOKE was done in a different database seems like a pretty good explanation of Bryn's issue. regards, tom lane
