On 05/15/2013 02:50 PM, Jan Wieck wrote:
I would call it a bug. The truncate trigger should be "security
definer", like the log trigger and several other functions are.
I have committed the 2-line fix for this to master and REL_2_1_STABLE.
The diff for 2.1 is attached.
Jan
--
Anyone who trades liberty for security deserves neither
liberty nor security. -- Benjamin Franklin
diff --git a/src/backend/slony1_funcs.sql b/src/backend/slony1_funcs.sql
index 7c083db..692d3ff 100644
--- a/src/backend/slony1_funcs.sql
+++ b/src/backend/slony1_funcs.sql
@@ -5540,7 +5540,8 @@ $$
end if;
return NULL;
end
-$$ language plpgsql;
+$$ language plpgsql
+ security definer;
comment on function @[email protected]_truncate ()
is 'trigger function run when a replicated table receives a TRUNCATE request';
_______________________________________________
Slony1-general mailing list
[email protected]
http://lists.slony.info/mailman/listinfo/slony1-general
