It is strange. If I remove both SELECT and INSERT then works fine but if either of is there then it doesn't work.
techdb=> SELECT has_table_privilege('user1', 'techdb.techtable', 'UPDATE, DELETE, TRUNCATE, REFERENCES, TRIGGER');
has_table_privilege
---------------------
t
(1 row)
techdb=>
Regards,
Dipti
On Fri, Apr 16, 2010 at 4:32 PM, dipti shah
<shahdipti1980@gmail.com> wrote:
Hey Kretschemer, the has_table_privilege function returns true in following situation as well which is wrong.
techdb=> select pc.relname, pc.relacl from pg_class pc, pg_namespace pn where pc.relnamespace=pn.oid and pn.nspname='techdb' and pc.relname='techtable';
relname | relacl
--------------+--------------------------------------------------------------
techtable | {postgres=arwdDxt/postgres,=ar/postgres,user1=ar/postgres}
(1 row)techdb=> SELECT has_table_privilege('user1', 'techdb.techtable', 'SELECT, UPDATE, DELETE, TRUNCATE, REFERENCES, TRIGGER');
has_table_privilege
---------------------
t
(1 row)
techdb=>
Note that user1 has only insert and select permissions on techtable but still has_table returns true for all permissions. Am I missing anything?
Thanks,
Dipti
On Thu, Apr 15, 2010 at 4:16 PM, dipti shah
<shahdipti1980@gmail.com> wrote:
Okay. Thanks.
Dipti.
On Thu, Apr 15, 2010 at 3:20 PM, A. Kretschmer
<andreas.kretschmer@schollglas.com> wrote:
In response to dipti shah :
> Thanks Kretschmer but I have seen those function. The below query returns error
> but you could see that 'user1' has ALL permissions on table 'techtable'.
>
> techdb=# SELECT has_table_privilege('user1', 'techtable', 'ALL');
> ERROR: unrecognized privilege type: "ALL"
>
> Do I have to run this command as below which includes all permissions
> explicitly? Did I miss anything?
Right, you have to name all privileges.
The desired access privilege type is specified by a text string, which
must evaluate to one of the values SELECT, INSERT, UPDATE, DELETE,
TRUNCATE, REFERENCES, or TRIGGER.