test

Author: soedirgo

ansible/files/admin_api_scripts/pg_upgrade_scripts/initiate.sh

@@ -316,8 +316,6 @@ function initiate_upgrade {
     if [ "$OLD_BOOTSTRAP_USER" = "postgres" ]; then
         run_sql -c "create role supabase_tmp login superuser;"
         # TODO: move to its own file
-        # TODO: GRANT TO postgres
-        # TODO: GRANTED BY postgres
         psql -h localhost -U supabase_tmp -d postgres <<'EOSQL'
 do $$
 declare
@@ -332,6 +330,12 @@ declare
     join pg_authid a on a.oid = d.defaclrole
     left join pg_namespace n on n.oid = d.defaclnamespace
   );
+  -- We only care about swapping init_privs for extensions
+  init_privs jsonb[] := (
+    select coalesce(array_agg(jsonb_build_object('objoid', objoid, 'classoid', classoid, 'initprivs', initprivs::text)), '{}')
+    from pg_init_privs
+    where privtype = 'e'
+  );
   schemas jsonb[] := (
     select coalesce(array_agg(jsonb_build_object('oid', n.oid, 'owner', a.rolname, 'acl', nspacl::text)), '{}')
     from pg_namespace n
@@ -474,6 +478,12 @@ begin
   -- TODO: don't modify system catalog directly
   update pg_user_mapping set umuser = 'postgres'::regrole where umuser = 'supabase_admin'::regrole;
 
+  -- init privs
+  foreach obj in array default_acls
+  loop
+    update pg_init_privs set initprivs = (obj->>'initprivs')::aclitem[] where objoid = (obj->>'objoid')::oid and classoid = (obj->>'classoid')::oid;
+  end loop;
+
   -- default acls
   foreach obj in array default_acls
   loop