Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Revoking public schema access not working as expected #91

Open
SharpEdgeMarshall opened this issue Oct 23, 2020 · 1 comment
Open

Revoking public schema access not working as expected #91

SharpEdgeMarshall opened this issue Oct 23, 2020 · 1 comment
Labels
awaiting-upstream The issue cannot be resolved without action in another repository (may be owned by Pulumi). kind/bug Some behavior is incorrect or out of spec

Comments

@SharpEdgeMarshall
Copy link

SharpEdgeMarshall commented Oct 23, 2020
edited
Loading

Like this issue on terraform when you create a schema and explicitly set a SchemaPolicy for PUBLIC role it's ignored and PUBLIC role has Create and Usage permissions

Example code

pulumi_postgresql.Schema("schema",
        name="public",
        database=db.name,
        owner=role.name,
        policies=[
            # PUBLIC role
            pgsql.outputs.SchemaPolicy(
                create=False,
                usage=False,
            )
        ],
        opts=default_resource_opt
    )
@justinvp
Copy link
Member

Thanks for pointing this out and linking to the underlying TF issue. We'll keep this open to track on our side.

@mikhailshilkov mikhailshilkov added kind/bug Some behavior is incorrect or out of spec awaiting-upstream The issue cannot be resolved without action in another repository (may be owned by Pulumi). labels Aug 9, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
awaiting-upstream The issue cannot be resolved without action in another repository (may be owned by Pulumi). kind/bug Some behavior is incorrect or out of spec
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@justinvp @mikhailshilkov @SharpEdgeMarshall