Commit17fa3e8

committed

doc: clarify that function "ownership" that controls permission

It used to say the creation user.Reported-by: Nathan Wagner

1 parent692ed05 commit17fa3e8Copy full SHA for 17fa3e8

File tree

-2

lines changed

-2

lines changed

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -401,7 +401,7 @@ CREATE [ OR REPLACE ] FUNCTION`
`401`	`401`	`is to be executed with the privileges of the user that calls it.`
`402`	`402`	`That is the default. <literal>SECURITY DEFINER</literal>`
`403`	`403`	`specifies that the function is to be executed with the`
`404`		`- privileges of the user thatcreated it.`
	`404`	`+ privileges of the user thatowns it.`
`405`	`405`	`</para>`
`406`	`406`
`407`	`407`	`<para>`
`@@ -747,7 +747,7 @@ SELECT * FROM dup(42);`
`747`	`747`
`748`	`748`	`<para>`
`749`	`749`	`Because a <literal>SECURITY DEFINER</literal> function is executed`
`750`		`- with the privileges of the user thatcreated it, care is needed to`
	`750`	`+ with the privileges of the user thatowns it, care is needed to`
`751`	`751`	`ensure that the function cannot be misused. For security,`
`752`	`752`	`<xref linkend="guc-search-path"> should be set to exclude any schemas`
`753`	`753`	`writable by untrusted users. This prevents`

Comments

(0)