On Thu, Feb 15, 2024 at 06:07:51PM +0100, Dominique Devienne wrote: > When I read about v16, I thought great, this fits our intent, a single "owner" > ROLE with CREATEROLE which is limited to administering only the ROLEs it > created itself. I've always been bothered by the mega-power of CREATEROLE. But > now that we're actually trying to use it, I'm a bit worried. Can someone > explain (or guess) what I'm missing here? Well, have you read the PG 16 release notes? https://www.postgresql.org/docs/current/release-16.html You might also want to review my unreleased slide deck about users: https://momjian.us/main/writings/pgsql/user.pdf -- Bruce Momjian <bruce@xxxxxxxxxx> https://momjian.us EDB https://enterprisedb.com Only you can decide what is important to you.
