Re: Non-superuser subscription owners
| От | Robert Haas |
|---|---|
| Тема | Re: Non-superuser subscription owners |
| Дата | |
| Msg-id | CA+TgmoZeUTF9jTwZgPMQszzvKq3CZ3AAJ83JawG_zqHQCGaNhA@mail.gmail.com обсуждение исходный текст |
| Ответ на | Re: Non-superuser subscription owners (Jeff Davis <pgsql@j-davis.com>) |
| Ответы |
Re: Non-superuser subscription owners
|
| Список | pgsql-hackers |
On Thu, Jan 19, 2023 at 1:40 PM Jeff Davis <pgsql@j-davis.com> wrote: > On Thu, 2023-01-19 at 10:45 -0500, Robert Haas wrote: > > I wouldn't be OK with writing our own connection string parser for > > this purpose, but using PQconninfoParse seems OK. We still have to > > embed knowledge of which connection string parameters can trigger > > local file access, but that doesn't seem like a massive problem to > > me. > > Another idea (I discussed with Andres some time ago) was to have an > option to libpq to turn off file access entirely. That could be a new > API function or a new connection option. > > That would be pretty valuable by itself. Though we might want to > support a way to pass SSL keys as values rather than file paths, so > that we can still do SSL. Maybe all of that would be useful, but it doesn't seem that mandatory. > So perhaps the answer is that it will be a small patch to get non- > superuser subscription owners, but we need three or four preliminary > patches first. I guess I'm not quite seeing it. Why can't we write a small patch to get this working right now, probably in a few hours, and deal with any improvements that people want at a later time? -- Robert Haas EDB: http://www.enterprisedb.com
В списке pgsql-hackers по дате отправления: