soedirgo
commented
2 weeks ago @keithf4 I see that check_epoch_type and check_partition_type are also SECURITY DEFINER - would it cause issues if these were converted into SECURITY INVOKER?
Open keithf4 opened 1 year ago
soedirgo
commented
2 weeks ago @keithf4 I see that check_epoch_type and check_partition_type are also SECURITY DEFINER - would it cause issues if these were converted into SECURITY INVOKER?
See about setting
superuser = falseinpg_partman.controlto allow non-superuser installation. With trigger-based partitioning going away, the last function that had SECURITY DEFINER left should be able to have that removed (check_name_length()which was being called by the trigger functions).