Re: [HACKERS] proposal: session server side variables
От | Fabien COELHO |
---|---|
Тема | Re: [HACKERS] proposal: session server side variables |
Дата | |
Msg-id | alpine.DEB.2.20.1701041151121.22281@lancre обсуждение исходный текст |
Ответ на | Re: [HACKERS] proposal: session server side variables (Craig Ringer <craig@2ndquadrant.com>) |
Ответы |
Re: [HACKERS] proposal: session server side variables
Re: [HACKERS] proposal: session server side variables |
Список | pgsql-hackers |
>> I respect your opinion and don't agree with it. > > Yeah. I'm pretty overwhelmingly unconvinced too. I'm lost. The security-related use-case you have presented stores the status of the verification in a variable. If the variable is untransactional, then it has been shown that the variable status may say ok while the verification has really really failed. This means that subsequent operations would be executed believing wrongly that the security was ok. Not good. Morover, there is no special cost in implementing transactional on session variables, has it is already done by pg. It can probably be reused. An alternative is to implement sub (nested) transactions, like Oracle and MS SQL Server... but that would be quite some work. So basically I do not see any point in not doing transactional variables. -- Fabien.
В списке pgsql-hackers по дате отправления: