Re: [GENERAL] How to execute 'set session role' from plpgsql function?

Tom Lane Tue, 19 Aug 2008 07:45:54 -0700

"Albe Laurenz" <[EMAIL PROTECTED]> writes:
>    EXECUTE 'SET SESSION ROLE "' || lower(regexp_replace(wishedrole, '"', '', 
> 'g')) || '"';


> The "lower" and "regexp_replace" are there to prevent SQL injection.

quote_ident() would be a far better solution.

                        regards, tom lane

-- 
Sent via pgsql-general mailing list (pgsql-general@postgresql.org)
To make changes to your subscription:
http://www.postgresql.org/mailpref/pgsql-general

Re: [GENERAL] How to execute 'set session role' from plpgsql function?

Reply via email to