Re: rights for schema
| От | Philipp Kraus |
|---|---|
| Тема | Re: rights for schema |
| Дата | |
| Msg-id | D46AE7F3-F305-496D-AE41-7FFE82AD9A9B@flashpixx.de обсуждение исходный текст |
| Ответ на | Re: rights for schema (Philipp Kraus <philipp.kraus@flashpixx.de>) |
| Список | pgsql-general |
Am 31.12.2012 um 18:02 schrieb Philipp Kraus:
Am 31.12.2012 um 15:54 schrieb Adrian Klaver:On 12/31/2012 05:41 AM, Philipp Kraus wrote:Am 31.12.2012 um 02:11 schrieb Adrian Klaver:Actually as of 9.0 that is not strictly true:http://www.postgresql.org/docs/9.2/interactive/sql-alterdefaultprivileges.htmlI have create a view for access a table and rules for modifiy the based table. The table has got a trigger.If I run an update on the view, I get an error "permission denied" for the trigger call. My user modifiesonly the "view", so do the user also get access to the trigger (execution right)? IMHO the trigger is runby postgres self, so the user don't need a right on the trigger.
Was the error for the trigger or the function the trigger called?ERROR: permission denied for schema usermanagementusermanagement ist ein schema and the base table calls a function within this schema, thischecks if the user is super user withselect current_setting('is_superuser') = 'on' into l_issuper;and checks some other datarows, which stores additional information about the userThe trigger calls a function "isAdministrator" within the schema.
I have changed the security option of the function from "security invoker" to "security definer" and it works :-)
Phil
В списке pgsql-general по дате отправления: