Re: Special role for subscriptions
| От | Evgeniy Efimkin |
|---|---|
| Тема | Re: Special role for subscriptions |
| Дата | |
| Msg-id | 1707711541507310@myt5-68ad52a76c91.qloud-c.yandex.net обсуждение исходный текст |
| Ответ на | Re: Special role for subscriptions (Stephen Frost <sfrost@snowman.net>) |
| Ответы |
Re: Special role for subscriptions
|
| Список | pgsql-hackers |
Hi! As a first step I suggest we allow CREATE SUBSCRIPTION for table owner only. 03.11.2018, 19:20, "Stephen Frost" <sfrost@snowman.net>: > Greetings, > > * Evgeniy Efimkin (efimkin@yandex-team.ru) wrote: >> In postgresql 10 and 11 only superuser can create/alter subscriptions. >> If there was a special role (like pg_monitor), it would be more easy to grant control on subscriptions. >> I can make a patch if there are no objections against it. > > I think the short answer is 'yes, we should let non-superusers do that', > but the longer answer is: > > What level of access makes sense for managing subscriptions? Should > there be a way to say "user X is allowed to create a subscription for > remote system Y, but only for tables that exist in schema Q"? > > My general feeling is 'yes', though, of course, I don't want to say that > we have to have all of that before we move forward with allowing > non-superusers to create subscriptions, but I do think we want to make > sure that we have a well thought-out path for how to get from where we > are now to a system which has a lot more granularity, and to do our best > to try avoiding any paths that might paint us into a corner. > > Thanks! > > Stephen
В списке pgsql-hackers по дате отправления: