Remove explicit superuser checks in favor of ACLs
Stephen Frost <sfrost@snowman.net>
Remove explicit superuser checks in favor of ACLs This removes the explicit superuser checks in the various file-access functions in the backend, specifically pg_ls_dir(), pg_read_file(), pg_read_binary_file(), and pg_stat_file(). Instead, EXECUTE is REVOKE'd from public for these, meaning that only a superuser is able to run them by default, but access to them can be GRANT'd to other roles. Reviewed-By: Michael Paquier Discussion: https://postgr.es/m/20171231191939.GR2416%40tamriel.snowman.net
Files
| Path | Change | +/− |
|---|---|---|
| src/backend/catalog/system_views.sql | modified | +14 −0 |
| src/backend/utils/adt/genfile.c | modified | +0 −20 |
Discussion
- Add default role 'pg_access_server_files' 30 messages · 2017-12-31 → 2018-04-06