column-level update privs + lock table

Поиск
Список
Период
Сортировка
От Josh Kupershmidt
Тема column-level update privs + lock table
Дата
Msg-id AANLkTimVe-V4rbnJa-QTAnz-703vCUEH9tMd9g6VbXAj@mail.gmail.com
обсуждение исходный текст
Ответы Re: column-level update privs + lock table
Список pgsql-general
Дерево обсуждения 
Hi all,

I noticed that granting a user column-level update privileges doesn't
allow that user to issue LOCK TABLE with any mode other than Access
Share.

The documentation page for LOCK TABLE claims: "All other forms of LOCK
require at least one of UPDATE, DELETE, or TRUNCATE privileges.", and
I don't see a good reason why column-level privileges shouldn't be
enough to let the user use LOCK TABLE. Is this just an oversight?

Example below:

  CREATE ROLE unpriv WITH LOGIN;
  CREATE TABLE bar (id int primary key, comment text);
  GRANT SELECT ON bar TO unpriv;
  GRANT SELECT, UPDATE (comment) ON TABLE bar TO unpriv;

and then, as user "unpriv":

  BEGIN;
  LOCK TABLE bar IN ROW SHARE MODE;
  COMMIT;

Josh

В списке pgsql-general по дате отправления:

Предыдущее
От: Raymond O'Donnell
Дата:
Сообщение: Re: [Slony1-general] [ANNOUNCE] Slony-I 2.0.5 Released
Следующее
От: Craig Ringer
Дата:
Сообщение: Re: postgreSQL for Windows 7