NotificationsYou must be signed in to change notification settings
Fork6
Star31

Commitd1379eb

committed

Improve default and empty privilege outputs in psql.

Default privileges are represented as NULL::aclitem[] in catalog ACLcolumns, while revoking all privileges leaves an empty aclitem[].These two cases used to produce identical output in psql meta-commandslike \dp. Using something like "\pset null '(default)'" as aworkaround for spotting the difference did not work, because nullvalues were always displayed as empty strings by describe.c'smeta-commands.This patch improves that with two changes:1. Print "(none)" for empty privileges so that the user is able to distinguish them from default privileges, even without special workarounds.2. Remove the special handling of null values in describe.c, so that "\pset null" is honored like everywhere else. (This affects all output from these commands, not only ACLs.)The privileges shown by \dconfig+ and \ddp as well as the columnprivileges shown by \dp are not affected by change#1, because therespective aclitem[] is reset to NULL or deleted from the cataloginstead of leaving an empty array.Erik Wienhold and Laurenz AlbeDiscussion:https://postgr.es/m/1966228777.127452.1694979110595@office.mailbox.org

1 parentbd86407 commitd1379ebCopy full SHA for d1379eb

File tree

4 files changed

+115

-45

lines changed

doc/src/sgml
- ddl.sgml
src
- bin/psql
  - describe.c
- test/regress
  - expected
    - psql.out
  - sql
    - psql.sql

4 files changed

+115

-45

lines changed

`‎doc/src/sgml/ddl.sgml`

Lines changed: 15 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -1737,6 +1737,11 @@ ALTER TABLE products RENAME TO items;`
`1737`	`1737`	`<primary>ACL</primary>`
`1738`	`1738`	`</indexterm>`
`1739`	`1739`
	`1740`	`+ <indexterm zone="ddl-priv-default">`
	`1741`	`+ <primary>privilege</primary>`
	`1742`	`+ <secondary>default</secondary>`
	`1743`	`+ </indexterm>`
	`1744`	`+`
`1740`	`1745`	`<para>`
`1741`	`1746`	`When an object is created, it is assigned an owner. The`
`1742`	`1747`	`owner is normally the role that executed the creation statement.`
`@@ -2049,7 +2054,7 @@ REVOKE ALL ON accounts FROM PUBLIC;`
`2049`	`2054`	`reference page of the respective command.`
`2050`	`2055`	`</para>`
`2051`	`2056`
`2052`		`- <para>`
	`2057`	`+ <para id="ddl-priv-default">`
`2053`	`2058`	`PostgreSQL grants privileges on some types of objects to`
`2054`	`2059`	`<literal>PUBLIC</literal> by default when the objects are created.`
`2055`	`2060`	`No privileges are granted to <literal>PUBLIC</literal> by default on`
`@@ -2375,6 +2380,15 @@ GRANT SELECT (col1), UPDATE (col1) ON mytable TO miriam_rw;`
`2375`	`2380`	`access privileges display. A <literal>*</literal> will appear only when`
`2376`	`2381`	`grant options have been explicitly granted to someone.`
`2377`	`2382`	`</para>`
	`2383`	`+`
	`2384`	`+ <para>`
	`2385`	`+ The <quote>Access privileges</quote> column`
	`2386`	`+ shows <literal>(none)</literal> when the object's privileges entry is`
	`2387`	`+ non-null but empty. This means that no privileges are granted at all,`
	`2388`	`+ even to the object's owner — a rare situation. (The owner still`
	`2389`	`+ has implicit grant options in this case, and so could re-grant her own`
	`2390`	`+ privileges; but she has none at the moment.)`
	`2391`	`+ </para>`
`2378`	`2392`	`</sect1>`
`2379`	`2393`
`2380`	`2394`	`<sect1 id="ddl-rowsecurity">`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commitd1379eb

File tree

4 files changed

4 files changed

`‎doc/src/sgml/ddl.sgml`

0 commit comments