On Mon, Oct 4, 2021 at 8:22 PM Bossart, Nathan <bossa...@amazon.com> wrote: > The changes for adding GUC management roles seem pretty > straightforward and would likely be helpful for service providers. > However, I was kind of surprised that membership to such roles also > provided access to ALTER SYSTEM SET. IMO there's quite a big > difference between allowing a user to set a GUC per-session versus > cluster-wide. With these patches, if I just want to allow a user to > set a GUC like temp_file_limit or log_statement, I also have to give > them the ability to change it (and several other GUCs) for all roles > on the system.
There's also ALTER ROLE and ALTER DATABASE, which provide more ways to set GUCs. I agree that we could choose make distinctions here, but I think if we make too many distinctions, it will become complicated to administer. And if we don't have *any* way to delegate ALTER SYSTEM, then I think we have missed the mark. -- Robert Haas EDB: http://www.enterprisedb.com
