mirror of
https://github.com/postgres/postgres.git
synced 2025-07-27 12:41:57 +03:00
Rename Default Roles to Predefined Roles
The term 'default roles' wasn't quite apt as these roles aren't able to be modified or removed after installation, so rename them to be 'Predefined Roles' instead, adding an entry into the newly added Obsolete Appendix to help users of current releases find the new documentation. Bruce Momjian and Stephen Frost Discussion: https://postgr.es/m/157742545062.1149.11052653770497832538%40wrigleys.postgresql.org and https://www.postgresql.org/message-id/20201120211304.GG16415@tamriel.snowman.net
This commit is contained in:
22
doc/src/sgml/appendix-obsolete-default-roles.sgml
Normal file
22
doc/src/sgml/appendix-obsolete-default-roles.sgml
Normal file
@ -0,0 +1,22 @@
|
||||
<!-- doc/src/sgml/obsolete-default-roles.sgml -->
|
||||
<!--
|
||||
See doc/src/sgml/obsolete.sgml for why this file exists. Do not change the id attribute.
|
||||
-->
|
||||
|
||||
<sect1 id="default-roles" xreflabel="default-roles">
|
||||
<title>Default Roles renamed to Predefined Roles</title>
|
||||
|
||||
<indexterm>
|
||||
<primary>default-roles</primary>
|
||||
</indexterm>
|
||||
|
||||
<para>
|
||||
PostgreSQL 13 and below used the term 'Default Roles', however, as these
|
||||
roles are not able to actually be changed and are installed as part of the
|
||||
system at initialization time, the more appropriate term to use is "Predefined Roles".
|
||||
See <xref linkend="predefined-roles"/> for current documentation regarding
|
||||
Predefined Roles, and <link linkend="release-prior">the release notes for
|
||||
PostgreSQL 14</link> for details on this change.
|
||||
</para>
|
||||
|
||||
</sect1>
|
@ -34,6 +34,7 @@
|
||||
-->
|
||||
|
||||
&obsolete-recovery-config;
|
||||
&obsolete-default-roles;
|
||||
&obsolete-pgxlogdump;
|
||||
&obsolete-pgresetxlog;
|
||||
&obsolete-pgreceivexlog;
|
||||
|
@ -187,8 +187,8 @@
|
||||
|
||||
<para>
|
||||
Changing table-level options requires being a superuser or having the privileges
|
||||
of the default role <literal>pg_read_server_files</literal> (to use a filename) or
|
||||
the default role <literal>pg_execute_server_program</literal> (to use a program),
|
||||
of the role <literal>pg_read_server_files</literal> (to use a filename) or
|
||||
the role <literal>pg_execute_server_program</literal> (to use a program),
|
||||
for security reasons: only certain users should be able to control which file is
|
||||
read or which program is run. In principle regular users could be allowed to
|
||||
change the other options, but that's not supported at present.
|
||||
|
@ -188,6 +188,7 @@
|
||||
<!-- Stubs for removed entries to preserve public links -->
|
||||
<!ENTITY obsolete SYSTEM "appendix-obsolete.sgml">
|
||||
<!ENTITY obsolete-recovery-config SYSTEM "appendix-obsolete-recovery-config.sgml">
|
||||
<!ENTITY obsolete-default-roles SYSTEM "appendix-obsolete-default-roles.sgml">
|
||||
<!ENTITY obsolete-pgxlogdump SYSTEM "appendix-obsolete-pgxlogdump.sgml">
|
||||
<!ENTITY obsolete-pgresetxlog SYSTEM "appendix-obsolete-pgresetxlog.sgml">
|
||||
<!ENTITY obsolete-pgreceivexlog SYSTEM "appendix-obsolete-pgreceivexlog.sgml">
|
||||
|
@ -282,7 +282,7 @@ postgres 27093 0.0 0.0 30096 2752 ? Ss 11:34 0:00 postgres: ser
|
||||
existence of a session and its general properties such as its sessions user
|
||||
and database are visible to all users. Superusers and members of the
|
||||
built-in role <literal>pg_read_all_stats</literal> (see also <xref
|
||||
linkend="default-roles"/>) can see all the information about all sessions.
|
||||
linkend="predefined-roles"/>) can see all the information about all sessions.
|
||||
</para>
|
||||
|
||||
<table id="monitoring-stats-dynamic-views-table">
|
||||
|
@ -465,7 +465,7 @@ COPY <replaceable class="parameter">count</replaceable>
|
||||
by the server, not by the client application, must be executable by the
|
||||
<productname>PostgreSQL</productname> user.
|
||||
<command>COPY</command> naming a file or command is only allowed to
|
||||
database superusers or users who are granted one of the default roles
|
||||
database superusers or users who are granted one of the roles
|
||||
<literal>pg_read_server_files</literal>,
|
||||
<literal>pg_write_server_files</literal>,
|
||||
or <literal>pg_execute_server_program</literal>, since it allows reading
|
||||
|
@ -483,15 +483,15 @@ DROP ROLE doomed_role;
|
||||
</para>
|
||||
</sect1>
|
||||
|
||||
<sect1 id="default-roles">
|
||||
<title>Default Roles</title>
|
||||
<sect1 id="predefined-roles">
|
||||
<title>Predefined Roles</title>
|
||||
|
||||
<indexterm zone="default-roles">
|
||||
<indexterm zone="predefined-roles">
|
||||
<primary>role</primary>
|
||||
</indexterm>
|
||||
|
||||
<para>
|
||||
<productname>PostgreSQL</productname> provides a set of default roles
|
||||
<productname>PostgreSQL</productname> provides a set of predefined roles
|
||||
that provide access to certain, commonly needed, privileged capabilities
|
||||
and information. Administrators (including roles that have the
|
||||
<literal>CREATEROLE</literal> privilege) can <command>GRANT</command> these
|
||||
@ -500,14 +500,14 @@ DROP ROLE doomed_role;
|
||||
</para>
|
||||
|
||||
<para>
|
||||
The default roles are described in <xref linkend="default-roles-table"/>.
|
||||
Note that the specific permissions for each of the default roles may
|
||||
change in the future as additional capabilities are added. Administrators
|
||||
The predefined roles are described in <xref linkend="predefined-roles-table"/>.
|
||||
Note that the specific permissions for each of the roles may change in
|
||||
the future as additional capabilities are added. Administrators
|
||||
should monitor the release notes for changes.
|
||||
</para>
|
||||
|
||||
<table tocentry="1" id="default-roles-table">
|
||||
<title>Default Roles</title>
|
||||
<table tocentry="1" id="predefined-roles-table">
|
||||
<title>Predefined Roles</title>
|
||||
<tgroup cols="2">
|
||||
<colspec colname="col1" colwidth="1*"/>
|
||||
<colspec colname="col2" colwidth="2*"/>
|
||||
|
Reference in New Issue
Block a user