pgsql: Revise the permission checking on user mapping DDL commands.

Поиск
Список
Период
Сортировка
От petere@postgresql.org (Peter Eisentraut)
Тема pgsql: Revise the permission checking on user mapping DDL commands.
Дата
Msg-id 20090120091021.1D042754878@cvs.postgresql.org
обсуждение исходный текст
Список pgsql-committers
Дерево обсуждения 
Log Message:
-----------
Revise the permission checking on user mapping DDL commands.
CREATE/ALTER/DROP USER MAPPING are now allowed either by the server owner or
by a user with USAGE privileges for his own user name.  This is more or less
what the SQL standard wants anyway (plus "implementation-defined")

Hide information_schema.user_mapping_options.option_value, unless the current
user is the one associated with the user mapping, or is the server owner and
the mapping is for PUBLIC, or is a superuser.  This is to protect passwords.

Also, fix a bug in information_schema._pg_foreign_servers, which hid servers
using wrappers where the current user did not have privileges on the wrapper.
The correct behavior is to hide servers where the current user has no
privileges on the server.

Modified Files:
--------------
    pgsql/doc/src/sgml:
        information_schema.sgml (r1.36 -> r1.37)
        (http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/doc/src/sgml/information_schema.sgml?r1=1.36&r2=1.37)
    pgsql/doc/src/sgml/ref:
        alter_user_mapping.sgml (r1.1 -> r1.2)
        (http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/doc/src/sgml/ref/alter_user_mapping.sgml?r1=1.1&r2=1.2)
        create_user_mapping.sgml (r1.2 -> r1.3)
        (http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/doc/src/sgml/ref/create_user_mapping.sgml?r1=1.2&r2=1.3)
        drop_user_mapping.sgml (r1.1 -> r1.2)
        (http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/doc/src/sgml/ref/drop_user_mapping.sgml?r1=1.1&r2=1.2)
    pgsql/src/backend/catalog:
        information_schema.sql (r1.49 -> r1.50)
        (http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/src/backend/catalog/information_schema.sql?r1=1.49&r2=1.50)
    pgsql/src/backend/commands:
        foreigncmds.c (r1.4 -> r1.5)
        (http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/src/backend/commands/foreigncmds.c?r1=1.4&r2=1.5)
    pgsql/src/test/regress/expected:
        foreign_data.out (r1.4 -> r1.5)
        (http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/src/test/regress/expected/foreign_data.out?r1=1.4&r2=1.5)
    pgsql/src/test/regress/sql:
        foreign_data.sql (r1.3 -> r1.4)
        (http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/src/test/regress/sql/foreign_data.sql?r1=1.3&r2=1.4)

В списке pgsql-committers по дате отправления:

Предыдущее
От: dim@pgfoundry.org (User Dim)
Дата:
Сообщение: backports - min_update: Imported Sources
Следующее
От: petere@postgresql.org (Peter Eisentraut)
Дата:
Сообщение: pgsql: Do not msgmerge against /dev/null; merge against the pot file