[prev in list] [next in list] [prev in thread] [next in thread] 

List:       postgresql-hackers
Subject:    Re: Read access for pg_monitor to pg_replication_origin_status view
From:       Martín Marqués <martin () 2ndquadrant ! com>
Date:       2020-05-31 15:13:08
Message-ID: CAPdiE1xchn=v3=r9b4FpE=CuDFaQivv+ogQk0NXsbyFY6y4QSA () mail ! gmail ! com
[Download RAW message or body]

Hi Michael,

> Wouldn't it be just better to remove this hardcoded superuser check
> and replace it with equivalent ACLs by default?  The trick is to make
> sure that any function calling replorigin_check_prerequisites() has
> its execution correctly revoked from public.  See for example
> e79350fe.

Looking at that, it seems a better solution. Let me wrap up a new
patch, likely later today or early tomorrow as it's Sunday ;-)

-- 
Martín Marqués                http://www.2ndQuadrant.com/
PostgreSQL Development, 24x7 Support, Training & Services


[prev in list] [next in list] [prev in thread] [next in thread]