sql: only connect privilege should be checked to see if a user can see a descriptor (for vtables) #59827
Labels
A-sql-privileges
SQL privilege handling and permission checks.
C-enhancement
Solution expected to add code/behavior + preserve backward-compat (pg compat issues are exception)
T-sql-foundations
SQL Foundations Team (formerly SQL Schema + SQL Sessions)
Projects
CONNECT privilege is being added in this PR: #59676
However we still will check if the user has ANY privilege in
userCanSeeDescriptor
to determine if they can see the descriptor.canSeeDescriptor := p.CheckAnyPrivilege(ctx, desc) == nil
We may want to deprecate this behaviour of allowing the object in vtables (pg_catalog/information_schema) to be seen if the user has any privilege on the descriptor and only allow users to see the object if they have connect privilege on the database.
Jira issue: CRDB-3226
The text was updated successfully, but these errors were encountered: