Improve documentation of the CREATEROLE attibute.
Robert Haas <rhaas@postgresql.org>
Improve documentation of the CREATEROLE attibute. In user-manag.sgml, document precisely what privileges are conveyed by CREATEROLE. Make particular note of the fact that it allows changing passwords and granting access to high-privilege roles. Also remove the suggestion of using a user with CREATEROLE and CREATEDB instead of a superuser, as there is no real security advantage to this approach. Elsewhere in the documentation, adjust text that suggests that <literal>CREATEROLE</literal> only allows for role creation, and refer to the documentation in user-manag.sgml as appropriate. Patch by me, reviewed by Álvaro Herrera Discussion: http://postgr.es/m/CA+TgmoZBsPL8nPhvYecx7iGo5qpDRqa9k_AcaW1SbOjugAY1Ag@mail.gmail.com
Files
| Path | Change | +/− |
|---|---|---|
| doc/src/sgml/ref/alter_role.sgml | modified | +1 −1 |
| doc/src/sgml/ref/create_role.sgml | modified | +5 −5 |
| doc/src/sgml/ref/createuser.sgml | modified | +13 −5 |
| doc/src/sgml/user-manag.sgml | modified | +33 −14 |
Documentation touched
Discussion
- fixing CREATEROLE 74 messages · 2022-11-21 → 2025-05-21