Re: should we allow users with a predefined role to access pg_backend_memory_contexts view and pg_log_backend_memory_contexts function?

Jeff Davis <pgsql@j-davis.com>

From: Jeff Davis <pgsql@j-davis.com>
To: Stephen Frost <sfrost@snowman.net>
Cc: Robert Haas <robertmhaas@gmail.com>, Isaac Morland <isaac.morland@gmail.com>, "Bossart, Nathan" <bossartn@amazon.com>, Bharath Rupireddy <bharath.rupireddyforpostgres@gmail.com>, PostgreSQL Hackers <pgsql-hackers@lists.postgresql.org>
Date: 2021-10-15T18:23:24Z
Lists: pgsql-hackers
On Fri, 2021-10-15 at 13:52 -0400, Stephen Frost wrote:
> While I appreciate that
> it
> isn't really addressing the complaint you have that it'd be nice if
> we
> made things simpler for administrators by making it so they don't
> have
> to GRANT access to both the view and the function, and I can see how
> that would be nice, it seems like we should probably be documenting
> these functions too and I don't know that it's correct to
> characterize
> them as 'internal'.

I'm content with that explanation.

It would be nice if there was some kind of improvement here, but I
won't push too hard for it if there are security concerns.

Regards,
	Jeff Davis





Commits

  1. Grant memory views to pg_read_all_stats.