Hello,

I have postgres 8.3 server. Trying to deny a user ability to execute
postgres function. Everything works fine with a regular function. I
created a function as security invoked, then I can revoke all on my
function from public; then, when trying to execute it as this user, I
get "permission denied" as expected. Good.
Things are not as clear to me if this function is a trigger
function and is called by a trigger on table insert. Ideally I want
the insert to be denied, but looks like the function is not executed
in security context of the invoker OR permissions are not checked at
all. User can successfully insert into the table even when all
permissions on the tigger function are revoked.

Thanks.

On 2010-12-15, Boris <boris.partensky (AT) gmail (DOT) com> wrote:
revoke the users insert permission for the table

--
⚂⚃ 100% natural

Hi Jasen, thanks for the reply.

Yes, but my question was more about trigger function permissions
rather than
how to not allow user insert into table. Are you saying that what I am
describing is a known, intended behavior?
Why are permissions on function ignored?

On Dec 16, 3:13Â*pm, Jasen Betts <ja... (AT) xnet (DOT) co.nz> wrote: