sql: migrate away from descriptorless public schemas #55793
Assignees
Labels
C-enhancement
Solution expected to add code/behavior + preserve backward-compat (pg compat issues are exception)
T-sql-foundations
SQL Foundations Team (formerly SQL Schema + SQL Sessions)
Comments
thoszhang
added
the
C-enhancement
blathers-crl
bot
added
the
T-sql-foundations
craig bot
pushed a commit
that referenced
this issue
Jul 21, 2021
66785: sql: support default privileges at the database level r=RichardJCai a=RichardJCai fixes #65604 sql: support default privileges at the database level This only adds default privileges stored on the database, we can add support for storing default privileges on schemas afterwards (shouldn't be a huge add onto this). Hopefully we can wait for #55793 so we don't need special logic to handle the public schema. This PR does not yet address handling having USAGE on types as a default privilege for the public role. Migration is not addressed yet, this PR still maintains backwards compatibility with how we "inherited" privileges before. Also sorry to the reviewers about the size of the PR, a lot of lines do come from tests however, specifically parse test. Hopefully it shouldn't be too bad. Release note (sql change): Added support for ALTER DEFAULT PRIVILEGES and default privileges stored on databases. All objects created in a database will have the privilege set defined by the default privileges for that type of object on the database. The types of objects are TABLES, SEQUENCES, SCHEMAS, TYPES. Example: ALTER DEFAULT PRIVILEGES GRANT SELECT ON TABLES TO foo makes it such that all tables created by the user that executed the ALTER DEFAULT PRIVILEGES command will have SELECT privilege on the table for user foo. Additionally, one can specify a role. Example: ALTER DEFAULT PRIVILEGES FOR ROLE bar GRANT SELECT ON TABLES TO foo. All tables created by bar will have SELECT privilege for foo. If a role is not specified, it uses the current user. See: https://www.postgresql.org/docs/current/sql-alterdefaultprivileges.html Currently, default privileges are not supported on the schema. Specifying a schema like ALTER DEFAULT PRIVILEGES IN SCHEMA s will error. WITH GRANT OPTION is ignored. GRANT OPTION FOR is also ignored. Co-authored-by: richardjcai <[email protected]>
jeffswenson
pushed a commit
to jeffswenson/cockroach
that referenced
this issue
Jul 26, 2021
66785: sql: support default privileges at the database level r=RichardJCai a=RichardJCai fixes cockroachdb#65604 sql: support default privileges at the database level This only adds default privileges stored on the database, we can add support for storing default privileges on schemas afterwards (shouldn't be a huge add onto this). Hopefully we can wait for cockroachdb#55793 so we don't need special logic to handle the public schema. This PR does not yet address handling having USAGE on types as a default privilege for the public role. Migration is not addressed yet, this PR still maintains backwards compatibility with how we "inherited" privileges before. Also sorry to the reviewers about the size of the PR, a lot of lines do come from tests however, specifically parse test. Hopefully it shouldn't be too bad. Release note (sql change): Added support for ALTER DEFAULT PRIVILEGES and default privileges stored on databases. All objects created in a database will have the privilege set defined by the default privileges for that type of object on the database. The types of objects are TABLES, SEQUENCES, SCHEMAS, TYPES. Example: ALTER DEFAULT PRIVILEGES GRANT SELECT ON TABLES TO foo makes it such that all tables created by the user that executed the ALTER DEFAULT PRIVILEGES command will have SELECT privilege on the table for user foo. Additionally, one can specify a role. Example: ALTER DEFAULT PRIVILEGES FOR ROLE bar GRANT SELECT ON TABLES TO foo. All tables created by bar will have SELECT privilege for foo. If a role is not specified, it uses the current user. See: https://www.postgresql.org/docs/current/sql-alterdefaultprivileges.html Currently, default privileges are not supported on the schema. Specifying a schema like ALTER DEFAULT PRIVILEGES IN SCHEMA s will error. WITH GRANT OPTION is ignored. GRANT OPTION FOR is also ignored. Co-authored-by: richardjcai <[email protected]>
exalate-issue-sync
bot
removed
the
T-sql-schema-deprecated
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
With the introduction of user-defined schemas in 20.2, the existing
publicschemas for databases, which lack a schema descriptor and all share an ID of 29, are now outliers. They can't be renamed or deleted or have their own privileges or zone configs. They also require special treatment in many places where we handle schemas in the code, which introduces a lot of complexity and likely some subtle inconsistencies with other user-defined schemas.The proposal is to migrate away from the special descriptorless schema implementation, with the goal of having
publicschemas being implemented like all other user-defined schemas, created by default for each new database. Here's a sketch of a plan, which gets us to the final state of no descriptorless public schemas in 21.2:publicschema with a descriptor. This means that clusters bootstrapped on 21.1 will never deal with descriptorlesspublicschemas.Regardless of whether we force users to migrate their own schemas or do it for them, this migration provides some UI challenges. It's not clear how we should indicate to the user that they have an upgraded public schema versus a non-upgraded one.
Epic CRDB-1521
The text was updated successfully, but these errors were encountered: