Remove explicit superuser checks in favor of ACLs

Stephen Frost <sfrost@snowman.net>

Commit: e79350fef2917522571add750e3e21af293b50fe
Author: Stephen Frost <sfrost@snowman.net>
Date: 2018-04-06T18:47:10Z
Releases: 11.0
Remove explicit superuser checks in favor of ACLs

This removes the explicit superuser checks in the various file-access
functions in the backend, specifically pg_ls_dir(), pg_read_file(),
pg_read_binary_file(), and pg_stat_file().  Instead, EXECUTE is REVOKE'd
from public for these, meaning that only a superuser is able to run them
by default, but access to them can be GRANT'd to other roles.

Reviewed-By: Michael Paquier
Discussion: https://postgr.es/m/20171231191939.GR2416%40tamriel.snowman.net

Files

PathChange+/−
src/backend/catalog/system_views.sql modified +14 −0
src/backend/utils/adt/genfile.c modified +0 −20

Discussion