read only user is able to "set role" back into super user

Question

I have two users running on my databse, the "superuser" and then "readonly" user.

If I log into the database as "readonly" I am not able to use "set role" and "set authorization" as expected.

However if I log into the database as "superuser" and then switch to "readonly", I am able to execute these commands and then switch back to "supeuser"

Is this kind of behavior intended? If so, can it be restricted?

Best regards.

A superuser has unrestricted power. That's why it's called a *super* user. — Bohemian, Jul 27 '23 at 22:00

score 0 · Answer 1 · answered Jul 27 '23 at 15:42

0

Yes, that behavior is intended, and you cannot restrict it.

answered Jul 27 '23 at 15:42

Laurenz Albe

209,280
17
206
263

read only user is able to "set role" back into super user

1 Answers1