diff options
| author | Michael Paquier <michael@paquier.xyz> | 2024-07-04 17:09:06 +0900 |
|---|---|---|
| committer | Michael Paquier <michael@paquier.xyz> | 2024-07-04 17:09:06 +0900 |
| commit | 4564f1cebd437d93590027c9ff46ef60bc3286ae (patch) | |
| tree | 97cc05025318fb6105986f781547ac12f1daa927 /src/test | |
| parent | 3a8a1f3254b2e3e981a91cb021ea0e9fdb5c3b9c (diff) | |
Add pg_get_acl() to get the ACL for a database object
This function returns the ACL for a database object, specified by
catalog OID and object OID. This is useful to be able to
retrieve the ACL associated to an object specified with a
(class_id,objid) couple, similarly to the other functions for object
identification, when joined with pg_depend or pg_shdepend.
Original idea by Álvaro Herrera.
Bump catalog version.
Author: Joel Jacobson
Reviewed-by: Isaac Morland, Michael Paquier, Ranier Vilela
Discussion: https://postgr.es/m/80b16434-b9b1-4c3d-8f28-569f21c2c102@app.fastmail.com
Diffstat (limited to 'src/test')
| -rw-r--r-- | src/test/regress/expected/privileges.out | 29 | ||||
| -rw-r--r-- | src/test/regress/sql/privileges.sql | 6 |
2 files changed, 35 insertions, 0 deletions
diff --git a/src/test/regress/expected/privileges.out b/src/test/regress/expected/privileges.out index eb4b762ea10..332bc584eb2 100644 --- a/src/test/regress/expected/privileges.out +++ b/src/test/regress/expected/privileges.out @@ -213,10 +213,39 @@ SELECT * FROM atest1; (0 rows) CREATE TABLE atest2 (col1 varchar(10), col2 boolean); +SELECT pg_get_acl('pg_class'::regclass, 'atest2'::regclass::oid); + pg_get_acl +------------ + +(1 row) + GRANT SELECT ON atest2 TO regress_priv_user2; GRANT UPDATE ON atest2 TO regress_priv_user3; GRANT INSERT ON atest2 TO regress_priv_user4 GRANTED BY CURRENT_USER; GRANT TRUNCATE ON atest2 TO regress_priv_user5 GRANTED BY CURRENT_ROLE; +SELECT unnest(pg_get_acl('pg_class'::regclass, 'atest2'::regclass::oid)); + unnest +------------------------------------------------ + regress_priv_user1=arwdDxtm/regress_priv_user1 + regress_priv_user2=r/regress_priv_user1 + regress_priv_user3=w/regress_priv_user1 + regress_priv_user4=a/regress_priv_user1 + regress_priv_user5=D/regress_priv_user1 +(5 rows) + +-- Invalid inputs +SELECT pg_get_acl('pg_class'::regclass, 0); -- null + pg_get_acl +------------ + +(1 row) + +SELECT pg_get_acl(0, 0); -- null + pg_get_acl +------------ + +(1 row) + GRANT TRUNCATE ON atest2 TO regress_priv_user4 GRANTED BY regress_priv_user5; -- error ERROR: grantor must be current user SET SESSION AUTHORIZATION regress_priv_user2; diff --git a/src/test/regress/sql/privileges.sql b/src/test/regress/sql/privileges.sql index eeb4c002926..980d19bde56 100644 --- a/src/test/regress/sql/privileges.sql +++ b/src/test/regress/sql/privileges.sql @@ -183,10 +183,16 @@ GRANT SELECT ON atest1 TO regress_priv_user3, regress_priv_user4; SELECT * FROM atest1; CREATE TABLE atest2 (col1 varchar(10), col2 boolean); +SELECT pg_get_acl('pg_class'::regclass, 'atest2'::regclass::oid); GRANT SELECT ON atest2 TO regress_priv_user2; GRANT UPDATE ON atest2 TO regress_priv_user3; GRANT INSERT ON atest2 TO regress_priv_user4 GRANTED BY CURRENT_USER; GRANT TRUNCATE ON atest2 TO regress_priv_user5 GRANTED BY CURRENT_ROLE; +SELECT unnest(pg_get_acl('pg_class'::regclass, 'atest2'::regclass::oid)); + +-- Invalid inputs +SELECT pg_get_acl('pg_class'::regclass, 0); -- null +SELECT pg_get_acl(0, 0); -- null GRANT TRUNCATE ON atest2 TO regress_priv_user4 GRANTED BY regress_priv_user5; -- error |