Commita47ad3a

committed

Doc: explain how to test ADMIN privilege with pg_has_role().

This has always been possible, but the syntax is a bit obscure,and our user-facing docs were not very helpful. Spell it outmore clearly.Per complaint from Dominique Devienne. Back-patch toall supported branches.Discussion:https://postgr.es/m/CAFCRh-8JNEy+dV4SXFOrWca50u+d=--TO4cq=+ac1oBtfJy4AA@mail.gmail.com

1 parentfb4f5e5 commita47ad3aCopy full SHA for a47ad3a

File tree

-0

lines changed

-0

lines changed

Lines changed: 4 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -25220,6 +25220,10 @@ SELECT has_function_privilege('joeuser', 'myfunc(int, text)', 'execute');`
`25220`	`25220`	`are immediately available without doing <command>SET ROLE</command>,`
`25221`	`25221`	`while <literal>SET</literal> denotes whether it is possible to change`
`25222`	`25222`	`to the role using the <literal>SET ROLE</literal> command.`
	`25223`	`+ <literal>WITH ADMIN OPTION</literal> or <literal>WITH GRANT`
	`25224`	`+ OPTION</literal> can be added to any of these privilege types to`
	`25225`	`+ test whether the <literal>ADMIN</literal> privilege is held (all`
	`25226`	`+ six spellings test the same thing).`
`25223`	`25227`	`This function does not allow the special case of`
`25224`	`25228`	`setting <parameter>user</parameter> to <literal>public</literal>,`
`25225`	`25229`	`because the PUBLIC pseudo-role can never be a member of real roles.`

Comments

(0)