rdelaage
/
postgresql
mirror of https://git.postgresql.org/git/postgresql.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

doc: Reword description of roles able to view track_activities's info 

The information generated when track_activities is accessible to
superusers, roles with the privileges of pg_read_all_stats, as well as
roles one has the privileges of.  The original text did not outline the
last point, while the change done in ac1ae47 was unclear about the
second point.

Per discussion with Nathan Bossart.

Discussion: https://postgr.es/m/20220521185743.GA886636@nathanxps13
Backpatch-through: 10
This commit is contained in:
Michael Paquier 2022-05-30 10:50:38 +09:00
parent 1e6802990c
commit 938548b754
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
doc/src/sgml/config.sgml
View File

@ -7296,10 +7296,10 @@ COPY postgres_log FROM '/full/path/to/logfile.csv' WITH csv;
executing command of each session, along with the time when
that command began execution. This parameter is on by
default. Note that even when enabled, this information is not
visible to all users, only to superusers, members of the
<literal>pg_read_all_stats</literal> role and the user owning
the session being reported on, so it should not represent a
security risk.
visible to all users, only to superusers, roles with privileges of the
<literal>pg_read_all_stats</literal> role and the user owning the
sessions being reported on (including sessions belonging to a role they
have the privileges of), so it should not represent a security risk.
Only superusers can change this setting.
</para>
</listitem>