Received: from malur.postgresql.org ([217.196.149.56])
	by arkaria.postgresql.org with esmtps  (TLS1.3) tls
 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.94.2)
	(envelope-from <pgsql-admin-owner+archive@lists.postgresql.org>)
	id 1v6NwU-003iH8-UZ
	for pgsql-admin@arkaria.postgresql.org; Wed, 08 Oct 2025 06:46:31 +0000
Received: from localhost ([127.0.0.1] helo=malur.postgresql.org)
	by malur.postgresql.org with esmtp (Exim 4.94.2)
	(envelope-from <pgsql-admin-owner+archive@lists.postgresql.org>)
	id 1v6NwR-0086uR-Tq
	for pgsql-admin@arkaria.postgresql.org; Wed, 08 Oct 2025 06:46:28 +0000
Received: from makus.postgresql.org ([2001:4800:3e1:1::229])
	by malur.postgresql.org with esmtps  (TLS1.3) tls
 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.94.2)
	(envelope-from <laurenz.albe@cybertec.at>)
	id 1v6NwR-0086uD-HN
	for pgsql-admin@lists.postgresql.org; Wed, 08 Oct 2025 06:46:28 +0000
Received: from mail-ed1-x52a.google.com ([2a00:1450:4864:20::52a])
	by makus.postgresql.org with esmtps  (TLS1.3) tls
 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
	(Exim 4.96)
	(envelope-from <laurenz.albe@cybertec.at>)
	id 1v6NwP-000cp6-1c
	for pgsql-admin@lists.postgresql.org;
	Wed, 08 Oct 2025 06:46:27 +0000
Received: by mail-ed1-x52a.google.com with SMTP id
 4fb4d7f45d1cf-6364eb29e74so66979a12.0
        for <pgsql-admin@lists.postgresql.org>;
 Tue, 07 Oct 2025 23:46:26 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=cybertec.at; s=google; t=1759905985; x=1760510785;
 darn=lists.postgresql.org;
        h=mime-version:user-agent:content-transfer-encoding:references
         :in-reply-to:date:cc:to:from:subject:message-id:from:to:cc:subject
         :date:message-id:reply-to;
        bh=WtzUWuyhh75/1r2d4udgday1o63L9kyuwG4Gn7iRB3o=;
        b=Z26geHp37Blw4dL0GByqxKLo+xjdz3ZCvsIyQiFktmC6x8UnNcws98L9Rm8ilYrnv8
         LLvcqEL6d2g0NHNefSEgWxeNyPd6T5Eiip+eDYU5dkPmon0iK5UfaIclYBIYGkQO1MBI
         2ELoHKjGdUr2qNMWf0xV4Vj8myn+30fzdTgwCwN+Tswsmtpir4TUqQO21bv1b8ca7/YY
         IjxWgFzIQl0qoEq3uNQ+XbCtzTI5oloVJ4xy7MJpKZAARB0YjPsJeuezrW64Ye+OCqE7
         wtUuALpahM+SEb3OF/wh06vGR4zCasBSdRa6GFrtAmMuYuTAaa5ifKvLsR1vwe+4cyG+
         p70g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1759905985; x=1760510785;
        h=mime-version:user-agent:content-transfer-encoding:references
         :in-reply-to:date:cc:to:from:subject:message-id:x-gm-message-state
         :from:to:cc:subject:date:message-id:reply-to;
        bh=WtzUWuyhh75/1r2d4udgday1o63L9kyuwG4Gn7iRB3o=;
        b=mwR0z3FrxfzuV4T18m2rVHvB8HW4pvyrnn22JZ23wwlpXianff9ICheKjf5EFulv+f
         edBgcwzHpoAKcXE4GdOKpxAIs25c6WYk9CAMHoM3pbej6Bg9d7b2niSuUxJ10iQn4UYk
         9hbF6TKBqEpk26w8t7bEsY7d8OPG/rXSr9sbGdMlv7mS/p4tUt7MwaBfUQ5hwfSZdQct
         84Xd9BrgDNN6y1lAXTji/yI9MPx8U3zUlrzgEvZ6Uz/gOZaUnh93f6IqJ1IexsZ1PEbV
         o9XX8WSpfLmWQtgPNhewF5rar6XrLyx9+ikvtDridIIbnAcfTkGVwir4lpwrFPz8Xqh6
         o5iA==
X-Gm-Message-State: AOJu0Yx/tYpPfY2iXBn2KKCAz3Mk3aoXWLX0G9boeJWKxqVGJimFcgWR
	aIFaYNBkADCSh5Dd9klyUKx0GbomZ0XLwDFgPzAvqMi/SrnFQFLWjozPcNV8FCIiXL4=
X-Gm-Gg: ASbGncuw412pWOA53cB5kRBlCblg1FbyasercUDNmEYmZIyullxocwNqY7Zkwupg3L7
	lvv4/1zMHnj+XZHARBRkpur3NZpI3YEk97XerCk0BYdli1mPzU3aWaL1oADxMUhH3VnnSJDMQEG
	4CbTjOo3lDMMtTfBzL+RI2kPIpruIyvODmY91/7kDMvl7mfohY6qgw/ZcLgXJybr6tiwsEAovyv
	rW58ikJHLnjZN6DDRKQ7MsNr+jHGWzoryppCkA2JeYS3R19k32Y2MFZr1S3m4eK2LREtiVRpLEg
	Px8KJ2S2zAgAhtc3ygVypIK1bHHQYFkd668mPiL/WlCGfp0/QCZ/MdcwjqT1b7utyFR21oD4HuV
	JCEHXcuCyUBzAYkj8FLfpS6W3WUgK2cCwgACeMZG12KooTbb9KEtU5tCyGuKilT5sm/tIIOEJKw
	==
X-Google-Smtp-Source: 
 AGHT+IGeCUyHSYuT/1kwBLpI6dMwWoy42aGu2Feh8ck5shBkCtKmM1qac6Wu+MQnxZH+vExA3nQY0g==
X-Received: by 2002:a05:6402:84f:b0:631:cc4f:2ff5 with SMTP id
 4fb4d7f45d1cf-639d5c5a788mr2037480a12.25.1759905984810;
        Tue, 07 Oct 2025 23:46:24 -0700 (PDT)
Received: from laurenz.albe-K4N0CV00F97414D ([41.66.97.100])
        by smtp.gmail.com with ESMTPSA id
 4fb4d7f45d1cf-63788110530sm14172500a12.38.2025.10.07.23.46.24
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Tue, 07 Oct 2025 23:46:24 -0700 (PDT)
Message-ID: <8b5a7c1d55c1c938cb8c39da2cf29711c6dc9247.camel@cybertec.at>
Subject: Re: role to access all information_schema.*?
From: Laurenz Albe <laurenz.albe@cybertec.at>
To: Ruben Laguna <ruben.laguna@gmail.com>
Cc: pgsql-admin@lists.postgresql.org
Date: Wed, 08 Oct 2025 08:46:23 +0200
In-Reply-To: 
 <CAFOAOWKyp4zHiajAJbcdE33jN=0FhVuNhknc5AHa9PMy0ngu9A@mail.gmail.com>
References: 
	<CAFOAOWJNJKLr8-YS7Q5wYnUHTjjaTbU6=rmTF_jW5W8fNfFamA@mail.gmail.com>
	 <b9ae240ad537f9a2088c022bb9a34ff33a1058e1.camel@cybertec.at>
	 <CAFOAOWKyp4zHiajAJbcdE33jN=0FhVuNhknc5AHa9PMy0ngu9A@mail.gmail.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
User-Agent: Evolution 3.56.2 (3.56.2-2.fc42) 
MIME-Version: 1.0
List-Id: <pgsql-admin.lists.postgresql.org>
List-Help: <https://lists.postgresql.org/manage/>
List-Subscribe: <https://lists.postgresql.org/manage/>
List-Post: <mailto:pgsql-admin@lists.postgresql.org>
List-Owner: <mailto:pgsql-admin-owner@lists.postgresql.org>
List-Archive: <https://www.postgresql.org/list/pgsql-admin>
Archived-At: 
 <https://www.postgresql.org/message-id/8b5a7c1d55c1c938cb8c39da2cf29711c6dc9247.camel%40cybertec.at>
Precedence: bulk

On Tue, 2025-10-07 at 22:59 +0200, Ruben Laguna wrote:
> Do you know what the standard says exactly, does it outright=C2=A0bans us=
ing any
> special means like having (pg_metadata_viewr or pg_read_information_schem=
a,
> etc). as "access privilege"?

Yes, that would be ISO/IEC 9075-11.  They define for example
information_schema.tables as

CREATE VIEW TABLES AS
SELECT TABLE_CATALOG, TABLE_SCHEMA, TABLE_NAME, TABLE_TYPE,
SELF_REFERENCING_COLUMN_NAME, REFERENCE_GENERATION,
USER_DEFINED_TYPE_CATALOG, USER_DEFINED_TYPE_SCHEMA,
USER_DEFINED_TYPE_NAME, IS_INSERTABLE_INTO, IS_TYPED,
COMMIT_ACTION
FROM DEFINITION_SCHEMA.TABLES
WHERE ( TABLE_CATALOG, TABLE_SCHEMA, TABLE_NAME ) IN
( SELECT TP.TABLE_CATALOG, TP.TABLE_SCHEMA, TP.TABLE_NAME
FROM DEFINITION_SCHEMA.TABLE_PRIVILEGES AS TP
WHERE ( TP.GRANTEE IN
( 'PUBLIC', CURRENT_USER )
OR
GRANTEE IN
( SELECT ROLE_NAME
FROM ENABLED_ROLES ) )
UNION
SELECT CP.TABLE_CATALOG, CP.TABLE_SCHEMA, CP.TABLE_NAME
FROM DEFINITION_SCHEMA.COLUMN_PRIVILEGES AS CP
WHERE ( CP.GRANTEE IN
( 'PUBLIC', CURRENT_USER )
OR
CP.GRANTEE IN
( SELECT ROLE_NAME
FROM ENABLED_ROLES ) ) )
AND
TABLE_CATALOG
=3D ( SELECT CATALOG_NAME
FROM INFORMATION_SCHEMA_CATALOG_NAME );

> Do you think it's hopeless to propose this in=C2=A0pgsql-hackers?

I agree with Tom, there is little hope.

Yours,
Laurenz Albe