* Josh Berkus ([email protected]) wrote: > I'm not agreeing, though, that we don't need a GRANT ALL/ALTER DEFAULT. > We still need that for the simplest cases so that novice-level users > will use *some* access control. But it would mean that we wouldn't need > GRANT ALL/ALTER DEFAULT to support anything other than the simplest cases.
I agree with Josh. That's also why I feel the schema or namespace-driven
grant/defaults make the most sense. I feel like it's the most natural
and intuitive option. Having a default for roles is a neat idea, but I
don't believe they'd be used much and would require having a precedence
or merging them, neither of which I like.
Thanks,
Stephen
signature.asc
Description: Digital signature
