summaryrefslogtreecommitdiff
path: root/doc/src
diff options
context:
space:
mode:
Diffstat (limited to 'doc/src')
-rw-r--r--doc/src/sgml/user-manag.sgml18
1 files changed, 18 insertions, 0 deletions
diff --git a/doc/src/sgml/user-manag.sgml b/doc/src/sgml/user-manag.sgml
index d171b13236b..fe0bdb75999 100644
--- a/doc/src/sgml/user-manag.sgml
+++ b/doc/src/sgml/user-manag.sgml
@@ -519,6 +519,24 @@ DROP ROLE doomed_role;
</thead>
<tbody>
<row>
+ <entry>pg_read_all_data</entry>
+ <entry>Read all data (tables, views, sequences), as if having SELECT
+ rights on those objects, and USAGE rights on all schemas, even without
+ having it explicitly. This role does not have the role attribute
+ <literal>BYPASSRLS</literal> set. If RLS is being used, an administrator
+ may wish to set <literal>BYPASSRLS</literal> on roles which this role is
+ GRANTed to.</entry>
+ </row>
+ <row>
+ <entry>pg_write_all_data</entry>
+ <entry>Write all data (tables, views, sequences), as if having INSERT,
+ UPDATE, and DELETE rights on those objects, and USAGE rights on all
+ schemas, even without having it explicitly. This role does not have the
+ role attribute <literal>BYPASSRLS</literal> set. If RLS is being used,
+ an administrator may wish to set <literal>BYPASSRLS</literal> on roles
+ which this role is GRANTed to.</entry>
+ </row>
+ <row>
<entry>pg_read_all_settings</entry>
<entry>Read all configuration variables, even those normally visible only to
superusers.</entry>
generated by cgit v1.2.3 (git 2.46.0) at 2025-08-22 14:11:30 +0000