On Wed, Jan 11, 2023 at 7:53 PM David G. Johnston <david.g.johns...@gmail.com> wrote: > Justed wanted to chime in and say Robert has eloquently put into words much > of what I have been thinking here, and that I concur that guiding the DBA to > use care with the power they have been provided is a sane position to take. > > +1, and thank you.
Thanks! Here's a patch. In it I make three changes, only one of which is directly relevant to the topic at hand: 1. Add a sentence to the documentation on writing SECURITY FUNCTIONS safely concerning createrole_self_grant. 2. Add a sentence to the documentation on SECURITY DEFINER referring to the section about writing such functions safely. 3. Remove a note discussing the fact that pre-8.3 versions did not have SET clauses for functions. I can separate this into multiple patches if desired. And of course you, Tom, or others may have suggestions on which of these changes should be included at all or how to word them better. -- Robert Haas EDB: http://www.enterprisedb.com
crsgdoc.patch
Description: Binary data
