Search Postgresql Archives

Re: Fwd: A million users

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Eric Hanson:
Did you find some way to prevent RESET ROLE?  I once advocated for a NO RESET option on SET ROLE [1] so that RESET ROLE would be impossible for the rest of the session.  Still think it would be helpful.

Yeah, this is still on my list of things to research more about eventually - currently still unsolved.

For my use-case the NO RESET would need to apply until the end of the transaction, not end of the session.

I imagine something like an extension, that would:
- block any SET SESSION ROLE
- block any RESET ROLE
- only allow SET LOCAL ROLE when CURRENT_USER has the right to do so

Then the effect of SET LOCAL ROLE would still be reversed at the end of the transaction, but you could never "escape" a SET LOCAL ROLE that was set earlier.

Best,

Wolfgang





[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Postgresql Jobs]     [Postgresql Admin]     [Postgresql Performance]     [Linux Clusters]     [PHP Home]     [PHP on Windows]     [Kernel Newbies]     [PHP Classes]     [PHP Databases]     [Postgresql & PHP]     [Yosemite]

  Powered by Linux