On Wed, Apr 6, 2011 at 7:54 PM, Stephen Frost <[email protected]> wrote: > * Andrew Dunstan ([email protected]) wrote: >> The surprising (to me) consequence was that every superuser was >> locked out of the system. I had not granted them (or anyone) the >> role, but nevertheless these lines took effect. > > As I recall, the way we allow superusers to set role to other roles is > by considering the superuser to be a member of every role. Now, I agree > that such an approach doesn't make sense for pg_hba consideration.
See bug #5763, and subsequent emails. Short version: Tom argued it wasn't a bug; Peter and I felt that it was. -- Robert Haas EnterpriseDB: http://www.enterprisedb.com The Enterprise PostgreSQL Company -- Sent via pgsql-hackers mailing list ([email protected]) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-hackers
