Commit23d4439

committed

Doc: explain how to test ADMIN privilege with pg_has_role().

This has always been possible, but the syntax is a bit obscure,and our user-facing docs were not very helpful. Spell it outmore clearly.Per complaint from Dominique Devienne. Back-patch toall supported branches.Discussion:https://postgr.es/m/CAFCRh-8JNEy+dV4SXFOrWca50u+d=--TO4cq=+ac1oBtfJy4AA@mail.gmail.com

1 parent785c53d commit23d4439Copy full SHA for 23d4439

File tree

-0

lines changed

-0

lines changed

Lines changed: 4 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -23030,6 +23030,10 @@ SELECT has_function_privilege('joeuser', 'myfunc(int, text)', 'execute');`
`23030`	`23030`	`the role (that is, the right to do <command>SET ROLE</command>), while`
`23031`	`23031`	`<literal>USAGE</literal> denotes whether the privileges of the role`
`23032`	`23032`	`are immediately available without doing <command>SET ROLE</command>.`
	`23033`	`+ <literal>WITH ADMIN OPTION</literal> or <literal>WITH GRANT`
	`23034`	`+ OPTION</literal> can be added to either of these privilege types to`
	`23035`	`+ test whether the <literal>ADMIN</literal> privilege is held (all`
	`23036`	`+ four spellings test the same thing).`
`23033`	`23037`	`This function does not allow the special case of`
`23034`	`23038`	`setting <parameter>user</parameter> to <literal>public</literal>,`
`23035`	`23039`	`because the PUBLIC pseudo-role can never be a member of real roles.`

Comments

(0)