| From: | Pavel Stehule <pavel(dot)stehule(at)gmail(dot)com> |
|---|---|
| To: | Fabien COELHO <coelho(at)cri(dot)ensmp(dot)fr> |
| Cc: | PostgreSQL Hackers <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: proposal: session server side variables |
| Date: | 2016-12-26 13:09:55 |
| Message-ID: | CAFj8pRC0JiHF-tPS2+HTJQ0vstBMOF7129uHofwMUEhNdxH60g@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
>
>> A possible compromise I have proposed is to have some declared access
>> restrictions on simple session variables, so that say only the owner can
>> access it, but they should stay and look like light-weight session
>> variables nevertheless. That could look like:
>>
>> SET ROLE Admin;
>> DECLARE @secure_variable INTEGER RESTRICT; -- only accessible to Admin
>>
>
Why introduce any another security system?
Regards
Pavel
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Pavel Stehule | 2016-12-26 13:24:33 | Re: IF (NOT) EXISTS in psql-completion |
| Previous Message | Pavel Stehule | 2016-12-26 13:02:07 | Re: proposal: session server side variables |