Thread

  1. [PATCH v5 12/14] Explain role management

    Karl O. Pinc <kop@karlpinc.com> — 2023-10-01T00:29:46Z

    It is non-obvious how the permission mechanisms control how
    roles are managed, and can be difficult to find the place in
    the documentation that describes the details.  When you do,
    the details are mixed in with other details un-related to
    setting up a management structure for roles.
    
    It is worth providing a concise summary of how roles are managed,
    alongside other high-level information related to roles.
    ---
     doc/src/sgml/user-manag.sgml | 9 +++++++++
     1 file changed, 9 insertions(+)
    
    diff --git a/doc/src/sgml/user-manag.sgml b/doc/src/sgml/user-manag.sgml
    index 4a26ede8fb..b3422ec4f0 100644
    --- a/doc/src/sgml/user-manag.sgml
    +++ b/doc/src/sgml/user-manag.sgml
    @@ -52,6 +52,15 @@
       there are only roles.  Any role can act as a user, a group, or both.
      </para>
     
    + <para>
    +   The managment of most database objects is by way of granting some role
    +   ownership, but roles don't have owners.
    +   Instead, roles are <link linkend="role-creation">managed</link> by
    +   those roles having the <literal>CREATEROLE</literal> attribute, that
    +   are also granted <literal>ADMIN</literal> privileges to the roles
    +   which are managed.
    + </para>
    +
      <para>
       This chapter describes how to create and manage roles.
       More information about the effects of role privileges on various
    -- 
    2.30.2
    
    
    --MP_//gBZFZYGWm7urqUgDbu6PSe
    Content-Type: text/x-patch
    Content-Transfer-Encoding: 7bit
    Content-Disposition: attachment;
     filename=v5-0013-Hyperlink-from-CREATE-FUNCTION-reference-page-to-.patch