sharpetronics/PostgreSQL
1
0
Fork 0
mirror of https://github.com/postgres/postgres.git synced 2025-06-03 00:02:26 -04:00
Code Issues Projects Releases Wiki Activity

doc: clarify that function "ownership" that controls permission

Browse Source 
It used to say the creation user.

Reported-by: Nathan Wagner
This commit is contained in:
Bruce Momjian 2017-03-20 22:33:26 -04:00
parent 692ed0567d
commit 17fa3e834f
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
doc/src/sgml/ref/create_function.sgml
View File

@ -401,7 +401,7 @@ CREATE [ OR REPLACE ] FUNCTION
is to be executed with the privileges of the user that calls it. is to be executed with the privileges of the user that calls it.
That is the default. <literal>SECURITY DEFINER</literal> That is the default. <literal>SECURITY DEFINER</literal>
specifies that the function is to be executed with the specifies that the function is to be executed with the
privileges of the user that created it. privileges of the user that owns it.
</para> </para>
<para> <para>
@ -747,7 +747,7 @@ SELECT * FROM dup(42);
<para> <para>
Because a <literal>SECURITY DEFINER</literal> function is executed Because a <literal>SECURITY DEFINER</literal> function is executed
with the privileges of the user that created it, care is needed to with the privileges of the user that owns it, care is needed to
ensure that the function cannot be misused. For security, ensure that the function cannot be misused. For security,
<xref linkend="guc-search-path"> should be set to exclude any schemas <xref linkend="guc-search-path"> should be set to exclude any schemas
writable by untrusted users. This prevents writable by untrusted users. This prevents