Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

Commit45768d1

Browse files
committed
Document the dummy_seclabel contrib module.
KaiGai Kohei, with editing and markup fixes by me.
1 parent511e902 commit45768d1

File tree

3 files changed

+77
-0
lines changed

3 files changed

+77
-0
lines changed

‎doc/src/sgml/contrib.sgml

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -90,6 +90,7 @@ psql -d dbname -f <replaceable>SHAREDIR</>/contrib/<replaceable>module</>.sql
9090
&dblink;
9191
&dict-int;
9292
&dict-xsyn;
93+
&dummy-seclabel;
9394
&earthdistance;
9495
&fuzzystrmatch;
9596
&hstore;

‎doc/src/sgml/dummy-seclabel.sgml

Lines changed: 75 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,75 @@
1+
<!-- doc/src/sgml/dummy_seclabel.sgml -->
2+
3+
<sect1 id="dummy-seclabel">
4+
<title>dummy_seclabel</title>
5+
6+
<indexterm zone="dummy-seclabel">
7+
<primary>dummy_seclabel</primary>
8+
</indexterm>
9+
10+
<para>
11+
The <filename>dummy_seclabel</> module exists only to support regression
12+
testing of the <command>SECURITY LABEL</> statement. It is not intended
13+
to be used in production.
14+
</para>
15+
16+
<sect2>
17+
<title>Rationale</title>
18+
19+
<para>
20+
The <command>SECURITY LABEL</> statement allows the user to assign security
21+
labels to database objects; however, security labels can only be assigned
22+
when specifically allowed by a loadable module, so this module is provided
23+
to allow proper regression testing.
24+
</para>
25+
26+
<para>
27+
Security label providers intended to be used in production will typically be
28+
dependent on a platform-specific feature such as
29+
<productname>SE-Linux</productname>. This module is platform-independent,
30+
and therefore better-suited to regression testing.
31+
</para>
32+
</sect2>
33+
34+
<sect2>
35+
<title>Usage</title>
36+
37+
<para>
38+
Here's a simple example of usage:
39+
</para>
40+
41+
<programlisting>
42+
# postgresql.conf
43+
shared_preload_libraries = 'dummy_label'
44+
</programlisting>
45+
46+
<programlisting>
47+
postgres=# CREATE TABLE t (a int, b text);
48+
CREATE TABLE
49+
postgres=# SECURITY LABEL ON TABLE t IS 'classified';
50+
SECURITY LABEL
51+
</programlisting>
52+
53+
<para>
54+
The <filename>dummy_seclabel</> provides only four hardcoded
55+
labels: <literal>unclassified</>, <literal>classified</>,
56+
<literal>secret</>, <literal>top secret</> and <literal>trusted</>.
57+
58+
It does not allow any other strings as security labels.
59+
</para>
60+
<para>
61+
These labels are not used to enforce access controls. They are only used
62+
to check whether the <command>SECURITY LABEL</> statement works as expected,
63+
or not.
64+
</para>
65+
</sect2>
66+
67+
<sect2>
68+
<title>Author</title>
69+
70+
<para>
71+
KaiGai Kohei <email>kaigai@ak.jp.nec.com</email>
72+
</para>
73+
</sect2>
74+
75+
</sect1>

‎doc/src/sgml/filelist.sgml

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -102,6 +102,7 @@
102102
<!entity dblink SYSTEM "dblink.sgml">
103103
<!entity dict-int SYSTEM "dict-int.sgml">
104104
<!entity dict-xsyn SYSTEM "dict-xsyn.sgml">
105+
<!entity dummy-seclabel SYSTEM "dummy-seclabel.sgml">
105106
<!entity earthdistance SYSTEM "earthdistance.sgml">
106107
<!entity fuzzystrmatch SYSTEM "fuzzystrmatch.sgml">
107108
<!entity hstore SYSTEM "hstore.sgml">

0 commit comments

Comments
 (0)
[8]ページ先頭
©2009-2025 Movatter.jp