- Desktop
- Enterprise
- Gaming
- Graphics
- Hardware
- Linux Kernel
- Multimedia
- Operating Systems
- Programming
- System Internals
- All Projects
- Latest News
- avcodec/mediacodecenc: Add global header support
- tdf#159660: also add normal blend filter
- Linux Kernel: Linux 6.9-rc5
- WINE: Release 9.7.
- Sync psm/evdev/atkbd with FreeBSD
- lavfi: Add pad_vaapi filter
- lavfi: Add drawbox_vaapi filter
- Linux Kernel: Linux 6.9-rc4
- Latest News (cont.)
- Embind: support .implement()-based JS UNO objects
- tdf#33603: sd: rework notes panel
- xwayland: Add SourceValidate hook
- UPower: Release 1.90.4
- timezone: sync to TZDB 2024a
- Linux Kernel: Linux 6.9-rc3
- Optimize pg_popcount() with AVX-512 instructions
- Enhance nbtree ScalarArrayOp execution
- Add basic JSON_TABLE() functionality
- Introduce a non-recursive JSON parser
- aarch64/fpu: Add vector variants of erfc
Featured content is also available via:
ALTER TABLE .. FORCE ROW LEVEL SECURITY
Enterprise / PostgreSQL - Stephen Frost [snowman.net] - 4 October 2015 20:05 UTC
To allow users to force RLS to always be applied, even for table owners, add .
row_security=off overrides FORCE ROW LEVEL SECURITY, to ensure pg_dump output is complete (by default).
Also add SECURITY_NOFORCE_RLS context to avoid data corruption when ALTER TABLE .. FORCE ROW SECURITY is being used. The SECURITY_NOFORCE_RLS security context is used only during referential integrity checks and is only considered in check_enable_rls() after we have already checked that the current user is the owner of the relation (which should always be the case during referential integrity checks).
Back-patch to 9.5 where RLS was added.
088c833 ALTER TABLE .. FORCE ROW LEVEL SECURITY
doc/src/sgml/catalogs.sgml | 10 ++
doc/src/sgml/ref/alter_table.sgml | 17 +++
src/backend/catalog/heap.c | 1 +
src/backend/commands/tablecmds.c | 40 +++++
src/backend/parser/gram.y | 14 ++
src/backend/utils/adt/ri_triggers.c | 6 +-
src/backend/utils/init/miscinit.c | 18 ++-
src/backend/utils/misc/rls.c | 44 +++++-
src/bin/pg_dump/pg_dump.c | 20 ++-
src/bin/pg_dump/pg_dump.h | 1 +
src/bin/psql/describe.c | 44 +++---
src/include/catalog/catversion.h | 2 +-
src/include/catalog/pg_class.h | 72 ++++-----
src/include/miscadmin.h | 2 +
src/include/nodes/parsenodes.h | 2 +
.../modules/test_ddl_deparse/test_ddl_deparse.c | 6 +
src/test/regress/expected/rowsecurity.out | 156 ++++++++++++++++++++
src/test/regress/output/misc.source | 3 +-
src/test/regress/sql/rowsecurity.sql | 143 ++++++++++++++++++
19 files changed, 537 insertions(+), 64 deletions(-)
Upstream: git.postgresql.org
Share
- Tweet
Recent PostgreSQL Activity
- Better handle indirect constraint drops
Alvaro Herrera - Ensure generated join clauses for child rels have correct relids
Tom Lane - psql: Make output of \dD more stable
Peter Eisentraut - Revert: Custom reloptions for table AM
Alexander Korotkov - Doc: Update ulinks to RFC documents to avoid redirect
Daniel Gustafsson