diff options
| author | Tom Lane <tgl@sss.pgh.pa.us> | 2017-10-11 16:56:23 -0400 |
|---|---|---|
| committer | Tom Lane <tgl@sss.pgh.pa.us> | 2017-10-11 16:57:15 -0400 |
| commit | fbac00a4a8d3d9ff97ceb7176fce038fea5239b5 (patch) | |
| tree | 97fa776b1c91aa0a6d70be0c9328a78c52973b72 /src | |
| parent | 516e29ab6f1f66767a78361dea0392f1530766b6 (diff) | |
| download | postgresql-fbac00a4a8d3d9ff97ceb7176fce038fea5239b5.tar.gz postgresql-fbac00a4a8d3d9ff97ceb7176fce038fea5239b5.zip | |
Doc: fix missing explanation of default object privileges.
The GRANT reference page, which lists the default privileges for new
objects, failed to mention that USAGE is granted by default for data
types and domains. As a lesser sin, it also did not specify anything
about the initial privileges for sequences, FDWs, foreign servers,
or large objects. Fix that, and add a comment to acldefault() in the
probably vain hope of getting people to maintain this list in future.
Noted by Laurenz Albe, though I editorialized on the wording a bit.
Back-patch to all supported branches, since they all have this behavior.
Discussion: https://postgr.es/m/1507620895.4152.1.camel@cybertec.at
Diffstat (limited to 'src')
| -rw-r--r-- | src/backend/utils/adt/acl.c | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/src/backend/utils/adt/acl.c b/src/backend/utils/adt/acl.c index 2efb6c94e11..853561bb26d 100644 --- a/src/backend/utils/adt/acl.c +++ b/src/backend/utils/adt/acl.c @@ -722,7 +722,9 @@ hash_aclitem(PG_FUNCTION_ARGS) * acldefault() --- create an ACL describing default access permissions * * Change this routine if you want to alter the default access policy for - * newly-created objects (or any object with a NULL acl entry). + * newly-created objects (or any object with a NULL acl entry). When + * you make a change here, don't forget to update the GRANT man page, + * which explains all the default permissions. * * Note that these are the hard-wired "defaults" that are used in the * absence of any pg_default_acl entry. |