upstream/postgresql
1
0
Fork 0
mirror of https://github.com/postgres/postgres.git synced 2026-04-27 17:16:43 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

doc: clarify that function "ownership" that controls permission

Browse source 
It used to say the creation user.

Reported-by: Nathan Wagner
This commit is contained in:
Bruce Momjian 2017-03-20 22:33:26 -04:00
parent 692ed0567d
commit 17fa3e834f
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
doc/src/sgml/ref/create_function.sgml
View file

@ -401,7 +401,7 @@ CREATE [ OR REPLACE ] FUNCTION
is to be executed with the privileges of the user that calls it.
That is the default. <literal>SECURITY DEFINER</literal>
specifies that the function is to be executed with the
privileges of the user that created it.
privileges of the user that owns it.
</para>
<para>
@ -747,7 +747,7 @@ SELECT * FROM dup(42);
<para>
Because a <literal>SECURITY DEFINER</literal> function is executed
with the privileges of the user that created it, care is needed to
with the privileges of the user that owns it, care is needed to
ensure that the function cannot be misused. For security,
<xref linkend="guc-search-path"> should be set to exclude any schemas
writable by untrusted users. This prevents