Re: [HACKERS] Here it is - view permissions

Marc Fournier <scrappy@hub.org>

From: The Hermit Hacker <scrappy@hub.org>
To: Jan Wieck <jwieck@debis.com>
Cc: PostgreSQL HACKERS <pgsql-hackers@postgreSQL.org>
Date: 1998-02-23T15:30:19Z
Lists: pgsql-hackers
On Mon, 23 Feb 1998, Jan Wieck wrote:

> > >     include/utils/acl.h line 65
> > > 
> > >     set ACL_WORLD_DEFAULT to ACL_NO
> > > 
> > >     Then tables and views default to what you wanted.
> > 
> > 	Have you actually tried this? :)  Does it break anything?
> > 
> > 
> > 
> 
>     No I didn't - but if I read your smiley correct it does - right?

	Only too well :)

	If I enable this, a \d no longer works as anyone but superuser,
with the first error being:

ERROR: pg_class: Permission denied.

	So it hits all the system tables too...

	Which wouldn't be too bad, just a matter of doing a 'GRANT SELECT'
from inside of initdb to get around this...

	...except, doing 'GRANT SELECT on pg_class to public' causes a
'PQexec() -- Request was sent to backend, but...' error message, and a
'Failed Assertion' on file inval.c...

	I'm not going to get a chance to investigate this during the day
today, so if anyone else wants to look into it?  If not, I'll look at it
from home tonight and see if I can figure it out...