Commit2bde07c

committed

Clarify the meaning of "trusted language" in the documentation.

1 parent63f591e commit2bde07cCopy full SHA for 2bde07c

File tree

+10

-9

lines changed

+10

-9

lines changed

Lines changed: 5 additions & 6 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,5 +1,5 @@`
`1`	`1`	`<!--`
`2`		`-$PostgreSQL: pgsql/doc/src/sgml/ref/create_language.sgml,v 1.50 2010/04/03 07:22:58 petere Exp $`
	`2`	`+$PostgreSQL: pgsql/doc/src/sgml/ref/create_language.sgml,v 1.51 2010/05/30 02:23:09 momjian Exp $`
`3`	`3`	`PostgreSQL documentation`
`4`	`4`	`-->`
`5`	`5`
`@@ -104,11 +104,10 @@ CREATE [ OR REPLACE ] [ TRUSTED ] [ PROCEDURAL ] LANGUAGE <replaceable class="pa`
`104`	`104`
`105`	`105`	`<listitem>`
`106`	`106`	`<para>`
`107`		`- <literal>TRUSTED</literal> specifies that`
`108`		`- the language is safe, that is, it does not offer an`
`109`		`- unprivileged user any functionality to bypass access`
`110`		`- restrictions. If this key word is omitted when registering the`
`111`		`- language, only users with the`
	`107`	`+ <literal>TRUSTED</literal> specifies that the language does`
	`108`	`+ not grant access to data that the user would not otherwise`
	`109`	`+ have. If this key word is omitted`
	`110`	`+ when registering the language, only users with the`
`112`	`111`	`<productname>PostgreSQL</productname> superuser privilege can`
`113`	`112`	`use this language to create new functions.`
`114`	`113`	`</para>`

Lines changed: 5 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-<!-- $PostgreSQL: pgsql/doc/src/sgml/xplang.sgml,v 1.37 2010/04/03 07:22:56 petere Exp $ -->`
	`1`	`+<!-- $PostgreSQL: pgsql/doc/src/sgml/xplang.sgml,v 1.38 2010/05/30 02:23:09 momjian Exp $ -->`
`2`	`2`
`3`	`3`	`<chapter id="xplang">`
`4`	`4`	`<title>Procedural Languages</title>`
`@@ -151,8 +151,10 @@ CREATE <optional>TRUSTED</optional> <optional>PROCEDURAL</optional> LANGUAGE <re`
`151`	`151`	`<optional>VALIDATOR <replaceable>validator_function_name</replaceable></optional> ;`
`152`	`152`	`</synopsis>`
`153`	`153`	`The optional key word <literal>TRUSTED</literal> specifies that`
`154`		`- ordinary database users that have no superuser privileges should`
`155`		`- be allowed to use this language to create functions and trigger`
	`154`	`+ the language does not grant access to data that the user would`
	`155`	`+ not otherwise have. Trusted languages are designed for ordinary`
	`156`	`+ database users (those without superuser privilege) and allows them`
	`157`	`+ to safely create of functions and trigger`
`156`	`158`	`procedures. Since PL functions are executed inside the database`
`157`	`159`	`server, the <literal>TRUSTED</literal> flag should only be given`
`158`	`160`	`for languages that do not allow access to database server`

Comments

(0)