Commit77930c5

committed

Doc: explain how to test ADMIN privilege with pg_has_role().

This has always been possible, but the syntax is a bit obscure,and our user-facing docs were not very helpful. Spell it outmore clearly.Per complaint from Dominique Devienne. Back-patch toall supported branches.Discussion:https://postgr.es/m/CAFCRh-8JNEy+dV4SXFOrWca50u+d=--TO4cq=+ac1oBtfJy4AA@mail.gmail.com

1 parent92a6cc5 commit77930c5Copy full SHA for 77930c5

File tree

-0

lines changed

-0

lines changed

Lines changed: 4 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -21762,6 +21762,10 @@ SELECT has_function_privilege('joeuser', 'myfunc(int, text)', 'execute');`
`21762`	`21762`	`the role (that is, the right to do <command>SET ROLE</command>), while`
`21763`	`21763`	`<literal>USAGE</literal> denotes whether the privileges of the role`
`21764`	`21764`	`are immediately available without doing <command>SET ROLE</command>.`
	`21765`	`+ <literal>WITH ADMIN OPTION</literal> or <literal>WITH GRANT`
	`21766`	`+ OPTION</literal> can be added to either of these privilege types to`
	`21767`	`+ test whether the <literal>ADMIN</literal> privilege is held (all`
	`21768`	`+ four spellings test the same thing).`
`21765`	`21769`	`This function does not allow the special case of`
`21766`	`21770`	`setting <parameter>user</parameter> to <literal>public</literal>,`
`21767`	`21771`	`because the PUBLIC pseudo-role can never be a member of real roles.`

Comments

(0)