Remove various special checks around default roles

Default roles really should be like regular roles, for the most part. This removes a number of checks that were trying to make default roles extra special by not allowing them to be used as regular roles. We still prevent users from creating roles in the "pg_" namespace or from altering roles which exist in that namespace via ALTER ROLE, as we can't preserve such changes, but otherwise the roles are very much like regular roles. Based on discussion with Robert and Tom.
author: Stephen Frost 2016-05-06 18:06:50 +0000
committer: Stephen Frost 2016-05-06 18:06:50 +0000
commit: a89505fd21da337b81172871d8f65d9a4fa22a8b (patch)
tree: da01d9648257bda268a0a344858b04c6735910eb /src/backend/commands/policy.c
parent: 6bd356c33a3cf3a49313dc8638ea4bb066c4cf37 (diff)
1 files changed, 0 insertions, 5 deletions
diff --git a/src/backend/commands/policy.c b/src/backend/commands/policy.c
index 146b36c2fa5..93d15e477af 100644
--- a/src/backend/commands/policy.c
+++ b/src/backend/commands/policy.c
@@ -176,13 +176,8 @@ policy_role_list_to_array(List *roles, int *num_roles)
 			return role_oids;
 		}
 		else
-		{
-			/* Additional check to protect reserved role names */
-			check_rolespec_name((Node *) spec,
-							"Cannot specify reserved role as policy target");
 			role_oids[i++] =
 				ObjectIdGetDatum(get_rolespec_oid((Node *) spec, false));
-		}
 	}
 
 	return role_oids;
author	Stephen Frost	2016-05-06 18:06:50 +0000
committer	Stephen Frost	2016-05-06 18:06:50 +0000
commit	a89505fd21da337b81172871d8f65d9a4fa22a8b (patch)
tree	da01d9648257bda268a0a344858b04c6735910eb /src/backend/commands/policy.c
parent	6bd356c33a3cf3a49313dc8638ea4bb066c4cf37 (diff)