grant.sgml says that
the default privileges granted to PUBLIC are as follows: CONNECT and
CREATE TEMP TABLE for databases; EXECUTE privilege for functions;
and USAGE privilege for languages.
But types also have the USAGE privilege for PUBLIC by default:
test=> CREATE TYPE bug_status AS ENUM ('new', 'open', 'closed');
CREATE TYPE
test=> GRANT USAGE ON TYPE bug_status TO duff;
GRANT
test=> REVOKE USAGE ON TYPE bug_status FROM duff;
REVOKE
test=> \dT+ bug_status
List of data types
Schema | Name | ... | Owner | Access privileges | ...
--------+------------+-----+---------+-------------------+-----
public | bug_status | | laurenz | =U/laurenz +|
| | | | laurenz=U/laurenz |
(1 row)
Hence I propose the attached documentation patch.
Yours,
Laurenz Albe
--
Sent via pgsql-hackers mailing list (pgsql-hackers@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-hackers