diff options
| author | Stephen Frost <sfrost@snowman.net> | 2021-04-01 15:32:06 -0400 |
|---|---|---|
| committer | Stephen Frost <sfrost@snowman.net> | 2021-04-01 15:32:06 -0400 |
| commit | c9c41c7a337d3e2deb0b2a193e9ecfb865d8f52b (patch) | |
| tree | b6904b160dc5ea124584d7860b38fb9cda81afbb /doc/src | |
| parent | a68a894f0198aaeffa81b3027f135adcdaa8abf6 (diff) | |
| download | postgresql-c9c41c7a337d3e2deb0b2a193e9ecfb865d8f52b.tar.gz postgresql-c9c41c7a337d3e2deb0b2a193e9ecfb865d8f52b.zip | |
Rename Default Roles to Predefined Roles
The term 'default roles' wasn't quite apt as these roles aren't able to
be modified or removed after installation, so rename them to be
'Predefined Roles' instead, adding an entry into the newly added
Obsolete Appendix to help users of current releases find the new
documentation.
Bruce Momjian and Stephen Frost
Discussion: https://postgr.es/m/157742545062.1149.11052653770497832538%40wrigleys.postgresql.org
and https://www.postgresql.org/message-id/20201120211304.GG16415@tamriel.snowman.net
Diffstat (limited to 'doc/src')
| -rw-r--r-- | doc/src/sgml/appendix-obsolete-default-roles.sgml | 22 | ||||
| -rw-r--r-- | doc/src/sgml/appendix-obsolete.sgml | 1 | ||||
| -rw-r--r-- | doc/src/sgml/file-fdw.sgml | 4 | ||||
| -rw-r--r-- | doc/src/sgml/filelist.sgml | 1 | ||||
| -rw-r--r-- | doc/src/sgml/monitoring.sgml | 2 | ||||
| -rw-r--r-- | doc/src/sgml/ref/copy.sgml | 2 | ||||
| -rw-r--r-- | doc/src/sgml/user-manag.sgml | 18 |
7 files changed, 37 insertions, 13 deletions
diff --git a/doc/src/sgml/appendix-obsolete-default-roles.sgml b/doc/src/sgml/appendix-obsolete-default-roles.sgml new file mode 100644 index 00000000000..dec3c50e581 --- /dev/null +++ b/doc/src/sgml/appendix-obsolete-default-roles.sgml @@ -0,0 +1,22 @@ +<!-- doc/src/sgml/obsolete-default-roles.sgml --> +<!-- + See doc/src/sgml/obsolete.sgml for why this file exists. Do not change the id attribute. +--> + +<sect1 id="default-roles" xreflabel="default-roles"> + <title>Default Roles renamed to Predefined Roles</title> + + <indexterm> + <primary>default-roles</primary> + </indexterm> + + <para> + PostgreSQL 13 and below used the term 'Default Roles', however, as these + roles are not able to actually be changed and are installed as part of the + system at initialization time, the more appropriate term to use is "Predefined Roles". + See <xref linkend="predefined-roles"/> for current documentation regarding + Predefined Roles, and <link linkend="release-prior">the release notes for + PostgreSQL 14</link> for details on this change. + </para> + +</sect1> diff --git a/doc/src/sgml/appendix-obsolete.sgml b/doc/src/sgml/appendix-obsolete.sgml index ffd7d40263e..d218de6c098 100644 --- a/doc/src/sgml/appendix-obsolete.sgml +++ b/doc/src/sgml/appendix-obsolete.sgml @@ -34,6 +34,7 @@ --> &obsolete-recovery-config; + &obsolete-default-roles; &obsolete-pgxlogdump; &obsolete-pgresetxlog; &obsolete-pgreceivexlog; diff --git a/doc/src/sgml/file-fdw.sgml b/doc/src/sgml/file-fdw.sgml index 8831f5911f1..2e21806f487 100644 --- a/doc/src/sgml/file-fdw.sgml +++ b/doc/src/sgml/file-fdw.sgml @@ -187,8 +187,8 @@ <para> Changing table-level options requires being a superuser or having the privileges - of the default role <literal>pg_read_server_files</literal> (to use a filename) or - the default role <literal>pg_execute_server_program</literal> (to use a program), + of the role <literal>pg_read_server_files</literal> (to use a filename) or + the role <literal>pg_execute_server_program</literal> (to use a program), for security reasons: only certain users should be able to control which file is read or which program is run. In principle regular users could be allowed to change the other options, but that's not supported at present. diff --git a/doc/src/sgml/filelist.sgml b/doc/src/sgml/filelist.sgml index 70ad6a4a4fd..45b701426b9 100644 --- a/doc/src/sgml/filelist.sgml +++ b/doc/src/sgml/filelist.sgml @@ -188,6 +188,7 @@ <!-- Stubs for removed entries to preserve public links --> <!ENTITY obsolete SYSTEM "appendix-obsolete.sgml"> <!ENTITY obsolete-recovery-config SYSTEM "appendix-obsolete-recovery-config.sgml"> +<!ENTITY obsolete-default-roles SYSTEM "appendix-obsolete-default-roles.sgml"> <!ENTITY obsolete-pgxlogdump SYSTEM "appendix-obsolete-pgxlogdump.sgml"> <!ENTITY obsolete-pgresetxlog SYSTEM "appendix-obsolete-pgresetxlog.sgml"> <!ENTITY obsolete-pgreceivexlog SYSTEM "appendix-obsolete-pgreceivexlog.sgml"> diff --git a/doc/src/sgml/monitoring.sgml b/doc/src/sgml/monitoring.sgml index af540fb02f2..56018745c89 100644 --- a/doc/src/sgml/monitoring.sgml +++ b/doc/src/sgml/monitoring.sgml @@ -282,7 +282,7 @@ postgres 27093 0.0 0.0 30096 2752 ? Ss 11:34 0:00 postgres: ser existence of a session and its general properties such as its sessions user and database are visible to all users. Superusers and members of the built-in role <literal>pg_read_all_stats</literal> (see also <xref - linkend="default-roles"/>) can see all the information about all sessions. + linkend="predefined-roles"/>) can see all the information about all sessions. </para> <table id="monitoring-stats-dynamic-views-table"> diff --git a/doc/src/sgml/ref/copy.sgml b/doc/src/sgml/ref/copy.sgml index aea2eb8386a..14cd437da0a 100644 --- a/doc/src/sgml/ref/copy.sgml +++ b/doc/src/sgml/ref/copy.sgml @@ -465,7 +465,7 @@ COPY <replaceable class="parameter">count</replaceable> by the server, not by the client application, must be executable by the <productname>PostgreSQL</productname> user. <command>COPY</command> naming a file or command is only allowed to - database superusers or users who are granted one of the default roles + database superusers or users who are granted one of the roles <literal>pg_read_server_files</literal>, <literal>pg_write_server_files</literal>, or <literal>pg_execute_server_program</literal>, since it allows reading diff --git a/doc/src/sgml/user-manag.sgml b/doc/src/sgml/user-manag.sgml index 6920f2db2b2..d171b13236b 100644 --- a/doc/src/sgml/user-manag.sgml +++ b/doc/src/sgml/user-manag.sgml @@ -483,15 +483,15 @@ DROP ROLE doomed_role; </para> </sect1> - <sect1 id="default-roles"> - <title>Default Roles</title> + <sect1 id="predefined-roles"> + <title>Predefined Roles</title> - <indexterm zone="default-roles"> + <indexterm zone="predefined-roles"> <primary>role</primary> </indexterm> <para> - <productname>PostgreSQL</productname> provides a set of default roles + <productname>PostgreSQL</productname> provides a set of predefined roles that provide access to certain, commonly needed, privileged capabilities and information. Administrators (including roles that have the <literal>CREATEROLE</literal> privilege) can <command>GRANT</command> these @@ -500,14 +500,14 @@ DROP ROLE doomed_role; </para> <para> - The default roles are described in <xref linkend="default-roles-table"/>. - Note that the specific permissions for each of the default roles may - change in the future as additional capabilities are added. Administrators + The predefined roles are described in <xref linkend="predefined-roles-table"/>. + Note that the specific permissions for each of the roles may change in + the future as additional capabilities are added. Administrators should monitor the release notes for changes. </para> - <table tocentry="1" id="default-roles-table"> - <title>Default Roles</title> + <table tocentry="1" id="predefined-roles-table"> + <title>Predefined Roles</title> <tgroup cols="2"> <colspec colname="col1" colwidth="1*"/> <colspec colname="col2" colwidth="2*"/> |