safeupdate
Extensions
- safeupdate 1.4.2
- Require criteria for UPDATE and DELETE
README
Require SQL Where Clause
safeupdate is a simple extension to PostgreSQL that raises an error if
UPDATE and DELETE are executed without specifying conditions. This
extension was initially designed to protect data from accidental obliteration of
data that is writable by PostgREST.
Installation
Build from source using
gmake
gmake install
Or from PGXN
pgxn install safeupdate
Activate per-session by running
load 'safeupdate';
Make this mandatory for all databases and connections by adding the following to
postgresql.conf:
shared_preload_libraries=safeupdate
Or enable for a specific database using
ALTER DATABASE mydb SET session_preload_libraries = 'safeupdate';
Examples
Try to update records without WHERE clause
UPDATE FROM rack SET fan_speed=70;
-- ERROR: UPDATE requires a WHERE clause
Select results from a CTE that attempts to modify data:
WITH updates AS (
UPDATE rack SET fan_speed=70
RETURNING *
)
SELECT * FROM updates;
-- ERROR: UPDATE requires a WHERE clause
Set a column value for a range of records
UPDATE rack SET fan_speed=90 WHERE fan_speed=70;
Set a column value for all the records in a table
UPDATE rack SET fan_speed=90 WHERE 1=1;
Options
Once loaded this extension can be administratively disabled by setting
SET safeupdate.enabled=0;
News
A release history as well as features in the upcoming release are covered in the NEWS file.