security permissions for functions

Поиск
Список
Период
Сортировка
От Rikard Pavelic
Тема security permissions for functions
Дата
Msg-id 45F039C6.4060009@zg.htnet.hr
обсуждение исходный текст
Ответы Re: security permissions for functions  (Tom Lane <tgl@sss.pgh.pa.us>)
Список pgsql-general
Дерево обсуждения 
Hi!

How can I assign execute permission to a role for a single function
inside schema.

For example
I create schema example;
function example.simple_select()
and user test_user;

If I grant usage on schema example to user test_user as
GRANT USAGE ON SCHEMA example TO test_user;

I can do select * from example.simple_select();

But I don't want this user to be able to select from other functions, so I
want something like

GRANT EXECUTE ON FUNCTION example.simple_select() TO test_user;

but unless the user has usage rights on schema example he can't select
from this function;

I'm using SECURITY DEFINER so that user can execute function without
permissions for
single commands.

Is this a bug or something?
because grant usage on schema doesn't assume select rights on views and
tables, but it does on functions.


Regards,
Rikard

В списке pgsql-general по дате отправления:

Предыдущее
От: Kevin Hunter
Дата:
Сообщение: Re: "oracle to postgresql" conversion
Следующее
От: Alvaro Herrera
Дата:
Сообщение: Re: Tabulate data incrementally