Le mercredi 20 octobre 2021, 20:40:39 CEST Mark Dilger a écrit : > These patches have been split off the now deprecated monolithic "Delegating > superuser tasks to new security roles" thread at [1]. > > The purpose of these patches is to allow non-superuser subscription owners > without risk of them overwriting tables they lack privilege to write > directly. This both allows subscriptions to be managed by non-superusers, > and protects servers with subscriptions from malicious activity on the > publisher side.
Thank you Mark for splitting this. This patch looks good to me, and provides both better security (by closing the "dropping superuser role" loophole) and usefule features. -- Ronan Dunklau
