postgresql 9.6 普通用戶查詢 pg_stat_activity、pg_stat_statements 時部分列顯示 insufficient privilege，有兩種方法可以解決。

postgres=> select pid,client_addr,query from pg_stat_activity;
 pid  | client_addr |                        query                        
------+-------------+-----------------------------------------------------
 3078 |             | select pid,client_addr,query from pg_stat_activity;
 2954 |             | <insufficient privilege>
 2955 |             | <insufficient privilege>
 2964 |             | <insufficient privilege>
 2976 |             | <insufficient privilege>
 2987 |             | <insufficient privilege>
(6 rows)

postgres=> select dbid,queryid,query  from pg_stat_statements order by query;
 dbid  |  queryid   |          query                                                                                                                                                                                                                                                
-------+------------+---------------------------------------------------------------------------------------------------------
 13325 |            | <insufficient privilege>
 13325 |            | <insufficient privilege>
 13325 |            | <insufficient privilege>
 13325 |            | <insufficient privilege>

授予 superuser 權限

這個雖然可行，但是把普通用戶的權限提升到 superuser，帶來相當高的風險

postgres=# alter user testuser1 with superuser;
ALTER ROLE
postgres=# \du
                                   List of roles
 Role name |                         Attributes                         | Member of 
-----------+------------------------------------------------------------+-----------
 testuser  | Superuser                                                  | {}
 postgres  | Superuser, Create role, Create DB, Replication, Bypass RLS | {}

創建 SECURITY DEFINER 函數

CREATE OR REPLACE FUNCTION pg_catalog.f_pg_stat_activity() RETURNS setof pg_catalog.pg_stat_activity AS 
$body$ 
DECLARE 
    result record; 
BEGIN 
	for result in select * from pg_catalog.pg_stat_activity
	loop 
	   return next result; 
	end loop; 
	return; 
	END; 
$body$ 
LANGUAGE 'plpgsql' VOLATILE CALLED ON NULL INPUT SECURITY DEFINER;

CREATE OR REPLACE FUNCTION pg_catalog.f_pg_stat_statements() RETURNS setof public.pg_stat_statements AS 
$body$ 
DECLARE 
    result record; 
BEGIN 
	for result in select * from public.pg_stat_statements
	loop 
	   return next result; 
	end loop; 
	return; 
	END; 
$body$ 
LANGUAGE 'plpgsql' VOLATILE CALLED ON NULL INPUT SECURITY DEFINER

REVOKE ALL ON FUNCTION pg_catalog.f_pg_stat_activity() FROM PUBLIC;
GRANT EXECUTE ON FUNCTION pg_catalog.f_pg_stat_activity() TO testuser1;

REVOKE ALL ON FUNCTION pg_catalog.f_pg_stat_statements() FROM PUBLIC;
GRANT EXECUTE ON FUNCTION pg_catalog.f_pg_stat_statements() TO testuser1;

可以通過查詢這兩個函數獲取數據。

select * from pg_catalog.f_pg_stat_activity();

select * from pg_catalog.f_pg_stat_statements();

postgresql 9.6 普通用戶查詢 pg_stat_activity、pg_stat_statements 的方法

授予 superuser 權限

創建 SECURITY DEFINER 函數

Window 安裝 Python 失敗 0x80070643，發生嚴重錯誤

《最新出爐》系列入門篇-Python+Playwright自動化測試-41-錄製視頻

oracle 穩定執行計劃 spm 之二自主綁定、解綁

mysql 查找沒有主鍵(primary key)的表

binlog_format 爲 ROW 的分析

innodb_flush_method 的參數設置

binlog_format 爲 MIXED 的分析

https://yachay.unat.edu.pe/blog/index.php?comment_area=format_blog&comment_component=blog&comment_co

linux以太網驅動總結