On Aug 6, 2020, at 12:22 PM, Tom Lane <tgl@sss.pgh.pa.us> wrote:
>
> Gonna need more context. The session-level user seems to have the
> right privileges, but maybe something is happening inside a
> security-definer function that doesn't have privileges?
The only security definer function in the db is a simple pg_shadow lookup used by pgbouncer.
Hmm, I should check both direct to PG and through PG bouncer--even though he is getting connected as the correct user,
perPG's error in the log.