Improve documentation of the CREATEROLE attibute.

In user-manag.sgml, document precisely what privileges are conveyed by CREATEROLE. Make particular note of the fact that it allows changing passwords and granting access to high-privilege roles. Also remove the suggestion of using a user with CREATEROLE and CREATEDB instead of a superuser, as there is no real security advantage to this approach. Elsewhere in the documentation, adjust text that suggests that <literal>CREATEROLE</literal> only allows for role creation, and refer to the documentation in user-manag.sgml as appropriate. Patch by me, reviewed by Álvaro Herrera Discussion: http://postgr.es/m/CA+TgmoZBsPL8nPhvYecx7iGo5qpDRqa9k_AcaW1SbOjugAY1Ag@mail.gmail.com
author: Robert Haas 2023-01-03 19:50:40 +0000
committer: Robert Haas 2023-01-03 20:00:18 +0000
commit: 1c77873727dfd2e48ab2ece84d1fb1676e95f9a5 (patch)
tree: 405537d4fdf07f3a972560c48363c47017583ae0 /doc/src/sgml/ref/alter_role.sgml
parent: 54afdcd6182af709cb0ab775c11b90decff166eb (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/doc/src/sgml/ref/alter_role.sgml b/doc/src/sgml/ref/alter_role.sgml
index 33ac7327070..8a8f8281375 100644
--- a/doc/src/sgml/ref/alter_role.sgml
+++ b/doc/src/sgml/ref/alter_role.sgml
@@ -320,7 +320,7 @@ ALTER ROLE fred VALID UNTIL 'infinity';
   </para>
 
   <para>
-   Give a role the ability to create other roles and new databases:
+   Give a role the ability to manage other roles and create new databases:
 
 <programlisting>
 ALTER ROLE miriam CREATEROLE CREATEDB;
author	Robert Haas	2023-01-03 19:50:40 +0000
committer	Robert Haas	2023-01-03 20:00:18 +0000
commit	1c77873727dfd2e48ab2ece84d1fb1676e95f9a5 (patch)
tree	405537d4fdf07f3a972560c48363c47017583ae0 /doc/src/sgml/ref/alter_role.sgml
parent	54afdcd6182af709cb0ab775c11b90decff166eb (diff)