Adopt PG 15 behavior for CREATE privileges (#17993)

Fixes DOC-8107 Summary of changes: - Update `CREATE` privileges docs with new cluster setting `sql.auth.public_schema_create_privilege.enabled` for compatibility with the recent Postgres 15 release.
cockroachdb · Oct 18, 2023 · 20e5132 · 20e5132
1 parent 3be5801
commit 20e5132
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/src/current/_includes/v23.2/sql/privileges.md b/src/current/_includes/v23.2/sql/privileges.md
@@ -5,7 +5,7 @@ Privilege | Levels | Description
 `CANCELQUERY` | System | Grants the ability to cancel queries.
 `CHANGEFEED` | Table | Grants the ability to create [changefeeds]({% link {{ page.version.version }}/change-data-capture-overview.md %}) on a table.
 `CONNECT` | Database | Grants the ability to view a database's metadata, which consists of objects in a database's `information_schema` and `pg_catalog` system catalogs. This allows the role to view the database's table, schemas, user-defined types, and list the database when running `SHOW DATABASES`. The `CONNECT` privilege is also required to run backups of the database.
-`CREATE` | Database, Schema, Table, Sequence | Grants the ability to create objects at the database, schema, table, or sequence level. When applied at the database level, grants the ability to configure [multi-region zone configs]({% link {{ page.version.version }}/zone-config-extensions.md %}).
+`CREATE` | Database, Schema, Table, Sequence | Grants the ability to create objects at the database, schema, table, or sequence level. When applied at the database level, grants the ability to configure [multi-region zone configs]({% link {{ page.version.version }}/zone-config-extensions.md %}). <br /><br /> In CockroachDB v23.2 and later, the [cluster setting]({% link {{ page.version.version }}/cluster-settings.md %}) `sql.auth.public_schema_create_privilege.enabled` controls whether users receive `CREATE` privileges on the public schema or not. The setting applies at the time that the [public schema is created]({% link {{ page.version.version }}/create-schema.md %}), which happens whenever [a database is created]({% link {{ page.version.version }}/create-database.md %}). The setting is `true` by default, but can be set to `false` for increased compatibility with [PostgreSQL version 15](https://www.postgresql.org/about/news/postgresql-15-released-2526/) as described in [this commit](https://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=b073c3ccd06e4cb845e121387a43faa8c68a7b62).
 `DELETE` | Table, Sequence | Grants the ability to delete objects at the table or sequence level.
 `DROP` | Database, Table, Sequence | Grants the ability to drop objects at the database, table, or sequence level.
 `EXECUTE` | Function | Grants the ability to execute [functions]({% link {{ page.version.version }}/functions-and-operators.md %}).