Hi all, I have a question regarding access to replication origin functions, such as pg_catalog.pg_replication_origin* (e.g. pg_replication_origin_oid(text)) .
At the moment, access to these functions has to be granted individually. Should users with the REPLICATION attribute be allowed to execute them by default? Alternatively, would it make sense to grant this access in bulk via an existing role like pg_create_subscription, or perhaps introduce a dedicated predefined role for this purpose? These functions are closely related to replication, but it’s not entirely clear what the intended privilege model is here. Any thoughts? Best regards, Egor Voynov
