|
238 | 238 | <entry>replication slot information</entry>
|
239 | 239 | </row>
|
240 | 240 |
|
| 241 | + <row> |
| 242 | + <entry><link linkend="catalog-pg-rowsecurity"><structname>pg_rowsecurity</structname></link></entry> |
| 243 | + <entry>table row-level security policies</entry> |
| 244 | + </row> |
| 245 | + |
241 | 246 | <row>
|
242 | 247 | <entry><link linkend="catalog-pg-seclabel"><structname>pg_seclabel</structname></link></entry>
|
243 | 248 | <entry>security labels on database objects</entry>
|
|
1935 | 1940 | </entry>
|
1936 | 1941 | </row>
|
1937 | 1942 |
|
| 1943 | + <row> |
| 1944 | + <entry><structfield>relhasrowsecurity</structfield></entry> |
| 1945 | + <entry><type>bool</type></entry> |
| 1946 | + <entry> |
| 1947 | + True if table has row-security enabled; see |
| 1948 | + <link linkend="catalog-pg-rowsecurity"><structname>pg_rowsecurity</structname></link> catalog |
| 1949 | + </entry> |
| 1950 | + </row> |
| 1951 | + |
1938 | 1952 | <row>
|
1939 | 1953 | <entry><structfield>relhassubclass</structfield></entry>
|
1940 | 1954 | <entry><type>bool</type></entry>
|
|
5328 | 5342 | </table>
|
5329 | 5343 | </sect1>
|
5330 | 5344 |
|
| 5345 | + <sect1 id="catalog-pg-rowsecurity"> |
| 5346 | + <title><structname>pg_rowsecurity</structname></title> |
| 5347 | + |
| 5348 | + <indexterm zone="catalog-pg-rowsecurity"> |
| 5349 | + <primary>pg_rowsecurity</primary> |
| 5350 | + </indexterm> |
| 5351 | + |
| 5352 | + <para> |
| 5353 | + The catalog <structname>pg_rowsecurity</structname> stores row-level |
| 5354 | + security policies for each table. A policy includes the kind of |
| 5355 | + command which it applies to (or all commands), the roles which it |
| 5356 | + applies to, the expression to be added as a security-barrier |
| 5357 | + qualification to queries which include the table and the expression |
| 5358 | + to be added as a with-check option for queries which attempt to add |
| 5359 | + new records to the table. |
| 5360 | + </para> |
| 5361 | + |
| 5362 | + <table> |
| 5363 | + |
| 5364 | + <title><structname>pg_rowsecurity</structname> Columns</title> |
| 5365 | + |
| 5366 | + <tgroup cols="4"> |
| 5367 | + <thead> |
| 5368 | + <row> |
| 5369 | + <entry>Name</entry> |
| 5370 | + <entry>Type</entry> |
| 5371 | + <entry>References</entry> |
| 5372 | + <entry>Description</entry> |
| 5373 | + </row> |
| 5374 | + </thead> |
| 5375 | + |
| 5376 | + <tbody> |
| 5377 | + <row> |
| 5378 | + <entry><structfield>rsecpolname</structfield></entry> |
| 5379 | + <entry><type>name</type></entry> |
| 5380 | + <entry></entry> |
| 5381 | + <entry>The name of the row-security policy</entry> |
| 5382 | + </row> |
| 5383 | + |
| 5384 | + <row> |
| 5385 | + <entry><structfield>rsecrelid</structfield></entry> |
| 5386 | + <entry><type>oid</type></entry> |
| 5387 | + <entry><literal><link linkend="catalog-pg-class"><structname>pg_class</structname></link>.oid</literal></entry> |
| 5388 | + <entry>The table to which the row-security policy belongs</entry> |
| 5389 | + </row> |
| 5390 | + |
| 5391 | + <row> |
| 5392 | + <entry><structfield>rseccmd</structfield></entry> |
| 5393 | + <entry><type>char</type></entry> |
| 5394 | + <entry></entry> |
| 5395 | + <entry>The command type to which the row-security policy is applied.</entry> |
| 5396 | + </row> |
| 5397 | + |
| 5398 | + <row> |
| 5399 | + <entry><structfield>rsecqual</structfield></entry> |
| 5400 | + <entry><type>pg_node_tree</type></entry> |
| 5401 | + <entry></entry> |
| 5402 | + <entry>The expression tree to be added to the security barrier qualifications for queries which use the table.</entry> |
| 5403 | + </row> |
| 5404 | + |
| 5405 | + <row> |
| 5406 | + <entry><structfield>rsecwithcheck</structfield></entry> |
| 5407 | + <entry><type>pg_node_tree</type></entry> |
| 5408 | + <entry></entry> |
| 5409 | + <entry>The expression tree to be added to the with check qualifications for queries which attempt to add rows to the table.</entry> |
| 5410 | + </row> |
| 5411 | + |
| 5412 | + </tbody> |
| 5413 | + </tgroup> |
| 5414 | + </table> |
| 5415 | + |
| 5416 | + <note> |
| 5417 | + <para> |
| 5418 | + <literal>pg_class.relhasrowsecurity</literal> |
| 5419 | + True if the table has row-security enabled. |
| 5420 | + Must be true if the table has a row-security policy in this catalog. |
| 5421 | + </para> |
| 5422 | + </note> |
| 5423 | + |
| 5424 | + </sect1> |
5331 | 5425 |
|
5332 | 5426 | <sect1 id="catalog-pg-seclabel">
|
5333 | 5427 | <title><structname>pg_seclabel</structname></title>
|
@@ -9133,6 +9227,12 @@ SELECT * FROM pg_locks pl LEFT JOIN pg_prepared_xacts ppx
|
9133 | 9227 | <entry><literal><link linkend="catalog-pg-class"><structname>pg_class</structname></link>.relhastriggers</literal></entry>
|
9134 | 9228 | <entry>True if table has (or once had) triggers</entry>
|
9135 | 9229 | </row>
|
| 9230 | + <row> |
| 9231 | + <entry><structfield>hasrowsecurity</structfield></entry> |
| 9232 | + <entry><type>boolean</type></entry> |
| 9233 | + <entry><literal><link linkend="catalog-pg-class"><structname>pg_class</structname></link>.relhasrowsecurity</literal></entry> |
| 9234 | + <entry>True if table has row security enabled</entry> |
| 9235 | + </row> |
9136 | 9236 | </tbody>
|
9137 | 9237 | </tgroup>
|
9138 | 9238 | </table>
|
|
0 commit comments